Skip to content

Instantly share code, notes, and snippets.

@zoocoup
Created November 14, 2012 00:44
Show Gist options
  • Save zoocoup/4069441 to your computer and use it in GitHub Desktop.
Save zoocoup/4069441 to your computer and use it in GitHub Desktop.
Any Documentation I Can Find on the Local KDC (LKDC)
# The LKDC is wanting for official documentation. Here's any bits of information I've found as of 20121113
The LKDC is used for local authentication for peer-to-peer services, specifically AFP file sharing, Screen Sharing
and Back to My Mac.
AFP548 “Kerberos in Leopard: The Local KDC part 1”:
http://web.archive.org/web/20100603060100/http://www.afp548.com/article.php?story=20080709091503862
(The original article seems to have been lost when the site
redesigned, but here's a cached version)
“Appendix C: Understanding the Local KDC” from “Apple Training Series: Mac OS X Directory Services v10.6:
A Guide to Configuring Directory Services on Mac OS X and Mac OS X Server v10.6 Snow Leopard”
by Arek Dreyer and Ben Greisler
http://ptgmedia.pearsoncmg.com/imprint_downloads/peachpit/peachpit/bookreg/0321635329/C_DirSerRG.pdf
Dreness wiki: http://dreness.com/wikimedia/index.php?title=LKDC
(Not 100% applicable to 10.7+ due to switch to Heimdal Kerberos)
RFC 6281 Section 7.1 "Authentication for Connecting to Remote Host": http://tools.ietf.org/rfc/rfc6281.txt
“LKDC support is to enabled password and certificate based authentication for between Macs and other devices
using MobileMe and Apple ID” — lkdc.5:
http://www.opensource.apple.com/source/Heimdal/Heimdal-172.27/packages/mac/lkdc.5
“With Mac OS X 10.5 and later, each client system maintains a local KDC (LKDC) for local computer security.” —
TS1245: http://support.apple.com/kb/TS1245
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment