[selinux-policy: 917/3172] adding some config files for kerberos.
Daniel J Walsh
dwalsh at fedoraproject.org
Thu Oct 7 20:24:20 UTC 2010
commit e6f94f7eed38dc7db065b1ede8edb6202bebf2d5
Author: Ryan Haggerty <rhaggerty at tresys.com>
Date: Thu Nov 3 15:59:51 2005 +0000
adding some config files for kerberos.
testing/kerberos/README | 19 +++++++++++++++++++
testing/kerberos/kdc.conf | 14 ++++++++++++++
testing/kerberos/krb5.conf | 18 ++++++++++++++++++
3 files changed, 51 insertions(+), 0 deletions(-)
---
diff --git a/testing/kerberos/README b/testing/kerberos/README
new file mode 100644
index 0000000..6b691f0
--- /dev/null
+++ b/testing/kerberos/README
@@ -0,0 +1,19 @@
+install server
+ yum install krb5-server
+and if the libs are not installed
+ yum install krb5-libs
+
+set a hostname
+ hostname noplace.org
+
+copy krb5.conf to /etc/
+copy kdc.conf to /var/kerberos/krb5kdc
+
+init the database and admin principals.
+ kdb5_util create -s
+add an admin principal
+ kadmin.local
+while running kadmin.local enter
+ addprinc master/admin
+
+
diff --git a/testing/kerberos/kdc.conf b/testing/kerberos/kdc.conf
new file mode 100644
index 0000000..985f318
--- /dev/null
+++ b/testing/kerberos/kdc.conf
@@ -0,0 +1,14 @@
+[realms]
+ NOPLACE.ORG = {
+ database_name = /var/kerberos/krb5kdc/princiapal
+ admin_keytab = /var/kerberos/krb5kdc/kadm5.acl
+ acl_file = /var/kerberos/krb5kdc/kadm5.acl
+ dict_file = /var/kerberos/krb5kdc/kadm5.dict
+ key_stash_file = /var/kerberos/krb5kdc/.k5.NOPLACE.ORG
+ kadmind_port = 749
+ max_life = 10h 0m 0s
+ max_renewable_life = 7d 0h 0m 0s
+ master_key_type = dec3-hmac-sha1
+ supported_enctypes = dec3-hmac-sha1:nromal des-cbc-crc:normal
+ }
+
diff --git a/testing/kerberos/krb5.conf b/testing/kerberos/krb5.conf
new file mode 100644
index 0000000..0e84fca
--- /dev/null
+++ b/testing/kerberos/krb5.conf
@@ -0,0 +1,18 @@
+[libdefaults]
+ default_realm = NOPLACE.ORG
+
+[realms]
+ NOPLACE.ORG = {
+ kdc = freebsd.NOPLACE.ORG:88
+ admin_server = NOPLACE.ORG:749
+ default_domain = NOPLACE.ORG
+ }
+
+[domain_realm]
+ NOPLACE.ORG = NOPLACE.ORG
+ .NOPLACE.ORG = NOPLACE.ORG
+
+[logging]
+ kdc = FILE:/var/log/krb5kdc.log
+ admin_server = FILE:/var/log/kadmin.log
+ default = FILE:/var/log/krb5lib.log
More information about the scm-commits
mailing list