Erinevus lehekülje "Heimdal Kerberose kasutamine OpenBSDga" redaktsioonide vahel
Allikas: Kuutõrvaja
(→Sissejuhatus) |
|||
5. rida: | 5. rida: | ||
===Kerberose serveri seadistamine=== | ===Kerberose serveri seadistamine=== | ||
− | + | Kerberose serveri tööd juhib seadistusfail /etc/kerberosV/krb5.conf, mille sisu võib olla nt selline | |
+ | |||
+ | [libdefaults] | ||
+ | # Set the realm of this host here | ||
+ | default_realm = LOOMAAED | ||
+ | # Maximum allowed time difference between KDC and this host | ||
+ | clockskew = 300 | ||
+ | |||
+ | [realms] | ||
+ | LOOMAAED = { | ||
+ | # Specify KDC here | ||
+ | kdc = kdc.loomaaed | ||
+ | # Administration server, used for creating users etc. | ||
+ | admin_server = kdc.loomaaed | ||
+ | } | ||
+ | |||
+ | # This sections describes how to figure out a realm given a DNS name | ||
+ | [domain_realm] | ||
+ | .loomaaed = LOOMAAED | ||
+ | |||
+ | [kadmin] | ||
+ | # For a k5 only realm, this will be fine | ||
+ | default_keys = v5 | ||
+ | |||
+ | [logging] | ||
+ | # The KDC logs by default, but it's nice to have a kadmind log as well. | ||
+ | kadmind = FILE:/var/heimdal/kadmind.log | ||
===Kerberose serveri käivitamine=== | ===Kerberose serveri käivitamine=== |
Redaktsioon: 24. juuni 2010, kell 23:29
Sisukord
Sissejuhatus
OpenBSD sisaldab Heimdal Kerberos v5 tarkvara.
Kerberose serveri seadistamine
Kerberose serveri tööd juhib seadistusfail /etc/kerberosV/krb5.conf, mille sisu võib olla nt selline
[libdefaults] # Set the realm of this host here default_realm = LOOMAAED # Maximum allowed time difference between KDC and this host clockskew = 300 [realms] LOOMAAED = { # Specify KDC here kdc = kdc.loomaaed # Administration server, used for creating users etc. admin_server = kdc.loomaaed } # This sections describes how to figure out a realm given a DNS name [domain_realm] .loomaaed = LOOMAAED [kadmin] # For a k5 only realm, this will be fine default_keys = v5 [logging] # The KDC logs by default, but it's nice to have a kadmind log as well. kadmind = FILE:/var/heimdal/kadmind.log
Kerberose serveri käivitamine
TODO