{"id":"edseymour-kdc-server","name":"kdc-server","homepage":"https://hub.docker.com/r/edseymour/kdc-server","repo_url":"https://hub.docker.com/r/edseymour/kdc-server","category":"auth","subcategories":[],"tags":["authentication","kerberos","kdc","sso","security-infrastructure","self-hosted"],"what_it_does":"kdc-server appears to be a KDC (Key Distribution Center) server component for Kerberos-style authentication/realms, responsible for serving authentication/key distribution requests to clients and services.","use_cases":["Kerberos realm authentication for users and services","Centralized management of principal keys and ticket issuance","On-prem or self-hosted environments needing SSO-style auth via Kerberos"],"not_for":["Public internet-facing authentication service without additional hardening and operational controls","Environments where you only need simple API key auth rather than a Kerberos ecosystem","Applications that require no stateful authentication infrastructure"],"best_when":null,"avoid_when":null,"alternatives":["MIT Kerberos (krb5) KDC","Heimdal KDC","Cloud SSO solutions (when feasible) such as Azure AD/Google Workspace with SAML/OIDC"],"af_score":8.0,"security_score":22.8,"reliability_score":0.0,"package_type":"mcp_server","discovery_source":["docker_mcp"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T21:33:33.017578+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Kerberos protocol (ticketing / key distribution)"],"oauth":false,"scopes":false,"notes":"No API-style auth details (API keys/OAuth) are provided in the supplied material; the authentication model is assumed to be Kerberos-native protocol interactions."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"Pricing not provided; repository/package metadata was not included in the prompt."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":8.0,"security_score":22.8,"reliability_score":0.0,"mcp_server_quality":0.0,"documentation_accuracy":0.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":20.0,"rate_limit_clarity":0.0,"tls_enforcement":0.0,"auth_strength":75.0,"scope_granularity":20.0,"dependency_hygiene":0.0,"secret_handling":0.0,"security_notes":"As a Kerberos KDC, it likely relies on strong cryptographic primitives, but no concrete configuration/documentation details (TLS usage, cipher policy, credential/key storage, dependency hygiene) were provided in the supplied prompt, so security scores are necessarily conservative on implementation-specific controls.","uptime_documented":0.0,"version_stability":0.0,"breaking_changes_history":0.0,"error_recovery":0.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["KDCs are protocol-driven and stateful; typical AI-agent workflows that assume REST/CRUD semantics may not map cleanly.","Kerberos environments often require careful time sync (clock skew) and realm/principal configuration; automated agent setup may fail without these prerequisites."]}}