Description:
While trying to get an AWS RDS cluster set up using Directory Service Authentication, one of the many issues I faced was the fact that Kerberos Authentication is not supported on MacOS.
Can someone please provide some detail on why this is?
MacOS is often used by those who need a closer connection to Linux systems, but are for whatever reason not able to use Linux as a workstation OS. Most often due to company policies.
This lack of support is only mentioned here: https://dev.mysql.com/doc/workbench/en/wb-mysql-connections-methods-ldap-kerberos.html and, after further digging around I found a comment in here: https://github.com/mysql/mysql-connector-cpp/blob/eb8aa607de22c26813ccee878717106cb5d51334...
How to repeat:
Install the MySQL Client on MacOS systems. When trying to connect to a MySQL instance/cluster with a user that is configured to be authorised using "authentication_kerberos", the "authentication_kerberos_client.so" object file is not available to handle the request.
Suggested fix:
Update documentation to more explicitly outline this restriction, potentially including some background as to why this is the case.
If possible, reverse the decision to not support this feature.
