Re: Well-understood limitation of Microsoft Kerberos?
That would be Microsoft Kerberos, the one that's incompatible with MIT Kerberos.
Fair's fair... that isn't really true. There's a difference between vendor-specific extensions and breaking compatibility. We have Windows machines authenticating against MIT Kerberos and indeed vice versa. Windows does need a little fettling since it regards that as an inter-realm relationship (because of the lack of those extensions) but they will interoperate. It's pretty much essential if you want Windows and Unix systems to interoperate in anything like a seamless manner with common user accounts on each.