jon@MIT.EDU (Jon A. Rochlis) (04/02/91)
Will version 4 machines be able to talk to version 5? MIT's version 5 KDC will respond to version 4 ticket requests. This will enable version 4 clients and servers to continue working, without requiring you to run off 2 KDC databases. There is a v4 -> v5 library that v4 applications can be linked against which will turn them into v5 applications, but it's probably a better idea to rewrite the small authentication code part anyway. Other than that, we've still got the normal problems of how to do a cutover. Do your end servers support both v4 and v5 for a while (different ports or something)? Do all the servers support v5? If not do you need new clients that support both v4 and v5 (ugh)? This will certainly depend upon the service involved and the degree of central control over the services, as well as the channels used for client updates. -- Jon