Hi Russ,
thanks a lot for your detailed explanation. What I forgot to mention:
- I initially log in to the box (NFSv4 client) via ssh, which causes
the following
*) Kerberos tickets are obtained
*) the home dir is mounted with automount via NFSv4
- From that interactive shell I would
Hi Russ (and all the others as well),
I came accross
http://www.eyrie.org/~eagle/software/kstart/k5start.html
and saw the following excerpt (sample code) for use in (Debian) init scripts
===
Starts k5start as a daemon using the Debian start-stop-daemon
management program. This is the sort of l
Hi,
I would like to know whether it's possible to rename a Kerberos realm
when all Kerberos related info is stored in an LDAP DIT (OpenLDAP and
MIT Kerberos running an Debian Lenny AMD64)?
Reason for this is that I will move my KDC to a new internal subnet
(having a new internal DNS domain) and I
Hi,
I'm using Debian Lenny with the standard MIT Kerberos and OpenLDAP
packages. So far, I've managed to setup up OpenLDAP delta syncrepl (so
I shouldn't need the kpropd (slave KDC)/kprop (master KDC) combo).
I googled about KDC slave setups but unfortunately didn't come accross
any HOWTO for LDA
Hi,
I'm using MIT Kerberos on a Debian Lenny system. All Kerberos related
info is stored in an LDAP DIT (realm was initialized by using
kdb5_ldap_util).
Now I've created a second realm whose contents reside in the same DIT
since our machines will be moving to a new subnet and a different DNS
doma
nts are most welcome.
Thanks & kind regards,
Holger
On Mon, 26 Oct 2009, Holger Rauch wrote:
> Hi,
>
> since the kadmin utility is not included with the current KfW bundle
> from the MIT Kerberos web site (version 3.2.2), is it "safe" to
> create krb5.keytab
Hi,
since the kadmin utility is not included with the current KfW bundle
from the MIT Kerberos web site (version 3.2.2), is it "safe" to
create krb5.keytab files for KfW using kadmin on a Unix machine and
transfer the file to the Windows box?
(Yes, I heard about ktpass.exe, but that's kind of awk
