5 Replies Latest reply on Aug 9, 2007 1:43 PM by Anil Saldanha

    Cluster Aware Cache Policy for the Jaas Security Manager

    Anil Saldanha Master

      Some one mentioned about an issue with clustering and usage of Kerberos tickets. When a cluster node fails over to a new machine, a request coming in with a username and a kerberos ticket goes through the jaas framework and the GSS-API throws an error saying that the request is a replay attack.

      The idea is that once a Kerberos setup has been performed with a service using the GSS api, the security cache needs to be the point of contact for the username.

      Your thoughts/feedback?