Hello Vanna,
If your backend store is LDAP, I would expect it to be portable. You can
actually try that by having multiple KDCs use the same LDAP, because the KDC
has readonly access. You could temporarily shut down the write actions during
the transition (kadmin, kpasswd) but even there I do
FWIW, I ran a realm in the early nineties ( in kerberos 4 no less ) in
which all the user names were
email addresses, some of which were quoted Full names with spaces and
punctuations. It was exactly the
nightmare you might expect. It did shake out a lot of parsing bugs in the
principal escaping co
I am new to Kerberos. We are in process of migrating Kerberos to new servers.
The current system runs kerb 1.4.3 and the new system has kerb 1.10.3. Can
someone tell me how can I move all the users and their passwords to new
kerberos system from the old one?
Thanks in advance.
__
On Wed, 17 Sep 2014 22:30:29 +0200
Cedric Blancher wrote:
> On 17 September 2014 17:05, Simo Sorce wrote:
> > On Wed, 17 Sep 2014 13:20:19 +0200
> > Cedric Blancher wrote:
> >
> >> What happens if there is no relation between KRB Realm names and
> >> FQDN/DNS? Can the NFS client find out which
On 17 September 2014 17:05, Simo Sorce wrote:
> On Wed, 17 Sep 2014 13:20:19 +0200
> Cedric Blancher wrote:
>
>> What happens if there is no relation between KRB Realm names and
>> FQDN/DNS? Can the NFS client find out which KRB Realm is used by the
>> server?
>
> Depending on the environment you
On Wed, 17 Sep 2014 13:20:19 +0200
Cedric Blancher wrote:
> What happens if there is no relation between KRB Realm names and
> FQDN/DNS? Can the NFS client find out which KRB Realm is used by the
> server?
Depending on the environment you may have 1 or 2 ways.
1. add domain to realm mapping in
On Wed, 17 Sep 2014, Lionel Cons wrote:
>
> No. krb5.conf sets default_ccache_name = DIR:/run/user/%{uid}/krb5cc,
> but only with ONE colon, not two.
One vs. two colons with DIR: is an implementation trick to distinguish
between when the directory is being treated as a collection, and when a
sing
On 10 September 2014 15:06, Simo Sorce wrote:
>
>
> - Original Message -
>> From: "Cedric Blancher"
>> To: "Simo Sorce"
>> Cc: "Jurjen Bokma" , ""
>> , "Linux NFS Mailing List"
>> , "Steve Dickson"
>> Sent: Tuesday, September 9, 2014 8:31:00 PM
>> Subject: Re: How to use NFS with multi
On 17 September 2014 10:39, Predrag Zecevic [Unix Systems
Administrator] wrote:
> Hi,
>
> does your environment modifies KRB5* variables ?
>
> $ env | grep KRB5
No. krb5.conf sets default_ccache_name = DIR:/run/user/%{uid}/krb5cc,
but only with ONE colon, not two.
Lionel
>
> Best regards.
> Pre
Hi,
does your environment modifies KRB5* variables ?
$ env | grep KRB5
Best regards.
Predrag Zečević
On 09/17/14 10:09 AM, Lionel Cons wrote:
> Why does klist -A use Ticket cache: DIR::/run/user with two colons
> instead of one, even if /etc/krb5.conf uses one colon?
>
> Lionel
> __
Why does klist -A use Ticket cache: DIR::/run/user with two colons
instead of one, even if /etc/krb5.conf uses one colon?
Lionel
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
11 matches
Mail list logo
