[cups.general] Still unable to authenticate with Kerberos in CUPS 1.3.5
Michael R Sweet
msweet at apple.com
Wed Jan 23 13:25:26 PST 2008
John A. Murdie wrote:
> There's another problem here, of course. Once one has edited the MacOS X client's cupsd.conf to have 'AuthType Negotiate' instead of 'AuthType Basic', then any interaction with the MacOS X print system through the local scheduler will require that one has a Kerberos ticket to do that. Without one, one can't edit the changed cupsd.conf through the browser interface, cancel jobs in local queues, etc etc. Telling our laptop users that they can only print to our Linux print server with Kerberos authentication will, I think, meet with some objections.
>
> Would making CUPS authentication type be per-host (or perhaps even per-printer) be a better way?
Per-host isn't going to happen, at least for different auth types per
host. You can already use the "Satisfy Any" directive to only require
authentication from addresses that are not allowed.
Per-printer is already supported via policies.
--
______________________________________________________________________
Michael R Sweet Senior Printing System Engineer
More information about the cups
mailing list