Post date:
Wednesday, October 2, 2013 - 09:33
Description:
Support for stronger encryption types has been recently added to OpenAFS.
In order to profit from this, the AFS service needs to be rekeyed. New service keys will need to be generated and distributed to all servers (which need a restart).
Credentials acquired from the moment when new keys are generated to the moment when these keys are distributed to all servers (and the servers are restarted) will not be accepted by the AFS servers and hence access to AFS will be interrupted. Credentials acquired beforehand should continue to work.
Effective from date:
Tuesday, November 12, 2013 - 12:30
End date:
Tuesday, November 12, 2013 - 14:00
Service Element Affected:
AFS Service
Impact on service:
Service will be available but degraded
Posted by:
IT-DSS
Unit responsible for resolution:
IT Department