Created
December 20, 2014 04:22
-
-
Save scottslowe/2263f0a95bd9e18e0d4f to your computer and use it in GitHub Desktop.
This Kerberos configuration file can be used to integrate Linux into Active Directory. This configuration uses DNS SRV records to locate the Kerberos realm and KDCs (AD domain controllers).
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [logging] | |
| default = FILE:/var/log/krb5libs.log | |
| kdc = FILE:/var/log/krb5kdc.log | |
| admin_server = FILE:/var/log/kadmind.log | |
| [libdefaults] | |
| default_realm = EXAMPLE.COM | |
| dns_lookup_realm = true | |
| dns_lookup_kdc = true | |
| #[realms] | |
| # EXAMPLE.COM = { | |
| # kdc = host.example.com:88 | |
| # admin_server = host.example.com:749 | |
| # default_domain = example.com | |
| # } | |
| [domain_realm] | |
| .example.com = EXAMPLE.COM | |
| example.com = EXAMPLE.COM | |
| [kdc] | |
| profile = /var/kerberos/krb5kdc/kdc.conf | |
| [appdefaults] | |
| pam = { | |
| debug = false | |
| ticket_lifetime = 36000 | |
| renew_lifetime = 36000 | |
| forwardable = true | |
| krb4_convert = false | |
| validate = true | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment