mirror of
git://slackware.nl/current.git
synced 2024-12-28 09:59:53 +01:00
36 lines
1.1 KiB
Text
36 lines
1.1 KiB
Text
|
[kdcdefaults]
|
||
|
|
kdc_listen = 88
|
||
|
|
kdc_tcp_listen = 88
|
||
|
|
|
||
|
|
[realms]
|
||
|
|
ATHENA.MIT.EDU = {
|
||
|
|
kadmind_port = 749
|
||
|
|
max_life = 12h 0m 0s
|
||
|
|
max_renewable_life = 7d 0h 0m 0s
|
||
|
|
master_key_type = aes256-cts-hmac-sha1-96
|
||
|
|
supported_enctypes = aes256-cts-hmac-sha1-96:normal aes128-cts-hmac-sha1-96:normal
|
||
|
|
database_module = openldap_ldapconf
|
||
|
|
}
|
||
|
|
|
||
|
|
[logging]
|
||
|
|
kdc = FILE:/var/kerberos/krb5kdc/kdc.log
|
||
|
|
admin_server = FILE:/var/kerberos/krb5kdc/kadmin.log
|
||
|
|
|
||
|
|
[dbdefaults]
|
||
|
|
ldap_kerberos_container_dn = cn=krbcontainer,dc=mit,dc=edu
|
||
|
|
|
||
|
|
[dbmodules]
|
||
|
|
openldap_ldapconf = {
|
||
|
|
db_library = kldap
|
||
|
|
disable_last_success = true
|
||
|
|
ldap_kdc_dn = "cn=krbadmin,dc=mit,dc=edu"
|
||
|
|
# this object needs to have read rights on
|
||
|
|
# the realm container and principal subtrees
|
||
|
|
ldap_kadmind_dn = "cn=krbadmin,dc=mit,dc=edu"
|
||
|
|
# this object needs to have read and write rights on
|
||
|
|
# the realm container and principal subtrees
|
||
|
|
ldap_service_password_file = /etc/kerberos/service.keyfile
|
||
|
|
ldap_servers = ldaps://kerberos.mit.edu
|
||
|
|
ldap_conns_per_server = 5
|
||
|
|
}
|