Cannot auth with MIT Kerberos if rdns=false is in krb5.conf

XMLWordPrintableJSON

    • Type: Task
    • Resolution: Unresolved
    • Priority: Minor - P4
    • None
    • Affects Version/s: None
    • Component/s: auth
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      On Ubuntu with Cyrus SASL and MIT Kerberos, if I put the following in /etc/krb5.conf:

      [libdefaults]
    rdns = false

      ... then the C Driver cannot authenticate to our Kerberos test server. This seems true whether I use the server's hostname or IP address in the URI, and whether I set CANONICALIZE_HOST_NAME to true or false. Is this expected, or is there a bug in _mongoc_sasl_get_canonicalized_name?

              Assignee:
              Unassigned
              Reporter:
              A. Jesse Jiryu Davis
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: