Discover a Kerberos KDC
bbense+comp.protocols.kerberos.Aug.20.02@telemark.stanford.edu
bbense+comp.protocols.kerberos.Aug.20.02 at telemark.stanford.edu
Tue Aug 20 13:56:32 EDT 2002
-----BEGIN PGP SIGNED MESSAGE-----
In article <4119492D7C3BD311B3670008C79B7BF92CAD10 at grimm1.GRIMSTAD>,
Nils Olav Selåsdal <noselasd at frisurf.no> wrote:
>
>> -----Original Message-----
>> From: kerberos-admin at mit.edu [mailto:kerberos-admin at mit.edu]
>> On Behalf Of Grau, Stephen
>> Sent: Monday, August 19, 2002 9:01 PM
>> To: kerberos at mit.edu
>> Subject: RE: Discover a Kerberos KDC
>>
>>
>> From the install guide:
>>
>> The second mechanism, recently introduced into the MIT code
>> base but not currently used by default, works by looking up
>> the information in special TXT records in the Domain Name
>> Service.
[snip]
>
>What do I put in the clients /etc/krb5.conf, having set up the DNS in
>this way? When leaving out the information now found in DNS, kerberos
>apps just complain about lacking configuration/options..
>
- - USE THE FORCE LUKE, READ THE SOURCE....
krb5-1.2.5/src/lib/krb5/os/locate_kdc.c
- - You need to compile with KRB5_DNS_LOOKUP
defined and set
dns_lookup_kdc = true
dns_lookup_realm = true
in the libdefaults section.
- - Booker C. Bense
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2
iQCVAwUBPWKCz2TWTAjn5N/lAQHy5AP/aTfw6CiIohrv2/UgkjoflEEjR9PPxpo/
0rNJtb5SYmqc9o5TX2+Hb6chIX/bVEjyuBxb5aNk01OQCRq2qXfQC905bywqpOQM
OOICs9YRVOkPsK5Xbr4uFRSV0WsPUW7bpAbs1ku9jrp6fB52l0Q/wmAcdlX44bgj
RivzwH11iRE=
=mzBF
-----END PGP SIGNATURE-----
More information about the Kerberos
mailing list