RFE: support for kerberos with otp enrolled
In the case of a kerberos setup where otp is enabled, there's more hoops you have to go through to get a ticket. It would be really great if G-O-A could support this case.
For example, Fedora has this setup. To get a ticket with a otp enabled, you have to:
- Have fedora-packager-kerberos installed as it contains ssl certs for the ipa server and config.
- run 'kinit -n @FEDORAPROJECT.ORG -c FILE:.armor.ccache' to get a armor.ccache file.
- use that file when requesting the ticket: 'kinit -n @FEDORAPROJECT.ORG -c FILE:.armor.ccache'
- enter your password and append your otp to it.
I'm not sure how possible this is to support, but it would be great if you could. I think there may be some work going on from ipa maintainers to make this less painfull, but I am not sure what the status is there.