Klist and kerberos

From UVOO Tech Wiki
Jump to navigation Jump to search

sudo yum install krb5-workstation krb5-libs 

sudo  klist -kt /etc/krb5.keytab | grep -i
realm list

/etc/krb5.conf 

# Configuration snippets may be placed in this directory as well
includedir /etc/krb5.conf.d/

includedir /var/lib/sss/pubconf/krb5.include.d/
[logging]
 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log

[libdefaults]
 dns_lookup_realm = false
 dns_lookup_kdc = true
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
 rdns = false
 pkinit_anchors = FILE:/etc/pki/tls/certs/ca-bundle.crt
 default_ccache_name = KEYRING:persistent:%{uid}

 default_realm = EXAMPLE.COM

[realms]
EXTENDHEALTH.COM = {
kdc = dc2.example.com
kdc = dc1.example.com
master_kdc = dc0.example.com
default_domain = example.com
}



[domain_realm]
 example.com = EXAMPLE.COM
 .example.com = EXAMPLE.COM
Retrieved from "https://tech.uvoo.io/index.php?title=Klist_and_kerberos&oldid=2679"