You are barking up the wrong tree because your request also means you intend to use the same kerberos realm for two distinct realms, and this will not work and end up in pain. Get your own subdomain (or a completely different second level domain), and then you will be able to create your own records there.
On Wed, 2025-02-26 at 19:39 +0100, Stefan Kania wrote: > Hi to all, > > I'm having the following problem: > > I set up an openldap with kerberos, now I want to add the srv-records > for Kerberos, but as DNS-Server we MUST use a DNS-Server from Active > Directory. So I can't add a srv-record _kerberos._tcp, because the > domain controller of the AD are keeping these records. So I would like > to add my own srv-record like _olkerberos._tcp so that I can use these > srv-records for krb5.conf. I'm already doing this for sssd, because > there I can configure the name of the srv-record. Can I do the same in > krb5.conf? If yes what do I have to do? > > Thanks > > Stefan > -- Simo Sorce Distinguished Engineer RHEL Crypto Team Red Hat, Inc ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
