search cancel

Support for TLS 1.2, AES256, and Kerberos v5 in CA PAM 3.4.X


Article ID: 210506


Updated On:


CA Privileged Access Manager (PAM)


This case is for documenting support for TLS v1.2, AES256 and Kerberos v5 in CA  PAM 3.4.X


CA Privileged Access Manager v 3.4.X


According to the following link

TLS v1.2 and AES256 are supported. Also, Kerberos v5 is supported as well.

Basically internally klist shows the client is v5

[email protected]:~# klist -V
Kerberos 5 version 1.15

apt list | grep krb

WARNING: apt does not have a stable CLI interface. Use with caution in scripts.

krb5-config/now 2.6 all [installed,local]
krb5-user/now 1.15-1+deb9u1 amd64 [installed,local]
libgssapi-krb5-2/now 1.15-1+deb9u1 amd64 [installed,local]
libkrb5-3/now 1.15-1+deb9u1 amd64 [installed,local]
libkrb5support0/now 1.15-1+deb9u1 amd64 [installed,local]

Which shows PAM is using KRB 5