X-Git-Url: http://www.project-moonshot.org/gitweb/?a=blobdiff_plain;f=README;h=83ff54966cd140146585719388d9b6e9b202b6cf;hb=204ff980cc67c2c2c17f35cd87aaba646a9a2111;hp=4303e807bd146947c68d9730f3966d9810dd0956;hpb=b27fce04e29ac8cf2fb9cff709989873daba3e25;p=mod_auth_kerb.cvs%2F.git

diff --git a/README b/README
index 4303e80..83ff549 100644
--- a/README
+++ b/README
@@ -66,6 +66,8 @@ KrbServiceName server_principal
    is used. The FQDN part can contain any hostname and can be used to work
    around problems with misconfigured DNS. A corresponding key of this name
    must be stored in the keytab.
+   If this option is set to 'Any', then any prinicpal from the keytab which
+   matches the client's request may be used.
 
 Krb4Srvtab /path/to/srvtab
    This option takes one argument, specifying the path to the Kerberos V4
@@ -91,6 +93,11 @@ KrbDelegateBasic on | off       (set to off by default)
    authentication scheme in Apache (Apache 2.1 seems to provide better support
    for multiple various authentication mechanisms).
 
+KrbLocalUserMapping on | off    (set to off by default)
+   When enabled, modul will try to translate authenticated username to local
+   name, which can be used by applications requiring an environment-specific
+   name (e.g. user account name). Simply, the realm name will be stripped out.
+
 Note on server principals
 -------------------------
 Now you have to create an service key for the module, which is needed to