{"id":"gcavalcante8808-krb5-server","name":"krb5-server","homepage":"https://hub.docker.com/r/gcavalcante8808/krb5-server","repo_url":"https://hub.docker.com/r/gcavalcante8808/krb5-server","category":"security","subcategories":[],"tags":["kerberos","authentication","kdc","realm","infrastructure","security"],"what_it_does":"krb5-server appears to provide a Kerberos 5 (krb5) server component/service for issuing and validating Kerberos tickets (authn) in a networked environment. It is intended for deploying Kerberos KDC/auth services rather than as a client library.","use_cases":["Internal enterprise authentication using Kerberos (KDC/realm services)","Service-to-service authentication in environments standardized on Kerberos","Setting up or running a Kerberos infrastructure component for existing clients/services"],"not_for":["Public internet-facing authentication endpoints without additional network controls","Use cases requiring OAuth/SAML-style web SSO flows","Applications that only need Kerberos client-side ticket acquisition and not a server component"],"best_when":"When you need to run or host Kerberos KDC/related services within a controlled network/realm and can manage Kerberos configuration, principals, and keys.","avoid_when":"When you need a turnkey SaaS API, web-based auth endpoints, or you cannot securely manage Kerberos keys/secrets and realm configuration.","alternatives":["MIT Kerberos (kdc/admin server)","Heimdal Kerberos","Managed Kerberos offerings (where available) or identity providers with OAuth/SAML instead of Kerberos"],"af_score":3.0,"security_score":41.5,"reliability_score":0.0,"package_type":"mcp_server","discovery_source":["docker_mcp"],"priority":"low","status":"evaluated","version_evaluated":null,"last_evaluated":"2026-04-04T19:38:20.063403+00:00","interface":{"has_rest_api":false,"has_graphql":false,"has_grpc":false,"has_mcp_server":false,"mcp_server_url":null,"has_sdk":false,"sdk_languages":[],"openapi_spec_url":null,"webhooks":false},"auth":{"methods":["Kerberos protocol (ticket-based authentication)"],"oauth":false,"scopes":false,"notes":"Authentication is inherent to Kerberos (tickets/service principals). Specific auth mechanisms, supported transports, and any admin interfaces are not provided in the supplied information."},"pricing":{"model":null,"free_tier_exists":false,"free_tier_limits":null,"paid_tiers":[],"requires_credit_card":false,"estimated_workload_costs":null,"notes":"No pricing information was provided; this appears to be self-hosted software."},"requirements":{"requires_signup":false,"requires_credit_card":false,"domain_verification":false,"data_residency":[],"compliance":[],"min_contract":null},"agent_readiness":{"af_score":3.0,"security_score":41.5,"reliability_score":0.0,"mcp_server_quality":0.0,"documentation_accuracy":0.0,"error_message_quality":0.0,"error_message_notes":null,"auth_complexity":20.0,"rate_limit_clarity":0.0,"tls_enforcement":20.0,"auth_strength":80.0,"scope_granularity":20.0,"dependency_hygiene":50.0,"secret_handling":30.0,"security_notes":"Kerberos typically provides strong authentication, but server deployments rely on secure keytab/secret management, correct crypto configuration, and strict network controls. No evidence about TLS usage, dependency posture, or secret-handling practices was included in the supplied content.","uptime_documented":0.0,"version_stability":0.0,"breaking_changes_history":0.0,"error_recovery":0.0,"idempotency_support":"false","idempotency_notes":null,"pagination_style":"none","retry_guidance_documented":false,"known_agent_gotchas":["Kerberos server software is configuration- and key-management heavy; agent attempts to automate changes may fail without correct realm/KDC configuration.","Protocol and operational failures can be environment-specific (DNS, clock skew, firewall ports, keytab permissions), so generic automation may produce non-obvious errors.","No programmatic interface (REST/SDK/MCP) is evidenced from the provided info, so an agent may not be able to interact safely/consistently without operating-system level access."]}}