Kerberos 5 and access to AFS

Although many ND services use Kerberos for authentication, the connection to AFS is the most widely used by end users.  Kerberos is a network authentication protocol, originally developed by MIT. It is designed to provide strong authentication for client/server applications by using secret-key cryptography. Kerberos version 5 is the currently supported version, and provides enhanced security. Changes and upgrades to an individual workstation may be required to use Kerberos 5 to authenticate to AFS.

Windows XP/Vista Information

• OpenAFS with Kerberos 5 for Windows
  • Installation program
  • Installation instructions
  • Configure OpenAFS to Start at Login
• Setup CRC AFS Cell Access for Windows

Macintosh

• OpenAFS with Kerberos 5 for Macintosh (10.4 & 10.5 ONLY)
  • Installation program
  • Installation instructions

Linux/Unix Information

• Automatic CRC/ND AFS cell setup for Linux
• Solaris - contact your departmental IT support for assistance
• Irix (SGI) - these systems are no longer supported and will not work to access AFS.

OIT Student Labs/Classrooms

As of the Fall 2008 semester, OIT-administered Windows workstations in Classrooms and Student Labs were updated to include OpenAFS with Kerberos 5 for Windows, and will not automatically connect to AFS upon login to the workstation.  An icon and/or menu option will need to be selected for those choosing to connect to AFS and map the H: and I: drives.  Optionally, users can access both AFS and NetFile space from any browser using WebFile.

Help and Support

If you have additional questions about AFS, please contact your departmental IT support or the OIT Help Desk (631-8111).