Problem Contact KDC
mohamed.chaari@orange-ftgroup.com
mohamed.chaari at orange-ftgroup.com
Thu Apr 24 10:08:34 EDT 2008
In the files krb5.conf, I wrote:
....
[realms]
EXAMPLE.COM = {
kdc = kerberos.example.com:88
admin_server = kerberos.example.com:749
default_domain = example.com
}
....
I understood that when the client ask for a ticket, it extract the kdc address from krb5.conf (kerberos.example.com).
-----Message d'origine-----
De : Ken Raeburn [mailto:raeburn at MIT.EDU] Envoyé : mercredi 23 avril 2008 17:31 À : zze-CHAARI Mohamed RD-CORE-ISS Cc : kerberos at mit.edu Objet : Re: Problem Contact KDC
On Apr 23, 2008, at 10:25, <mohamed.chaari at orange-ftgroup.com> <mohamed.chaari at orange-ftgroup.com
> wrote:
> **In the file example.zone:
>
> .... IN SOA example.com. root.example.com.
> ...
> ..
> IN NS example.com
> Kerberos IN A 192.168.1.254
> ...
>
> Other files of Kerberos are not changed.
>
> Can anyone help me please?
See http://web.mit.edu/kerberos/krb5-1.6/krb5-1.6.3/doc/krb5-admin.html#Using-DNS
for some examples of how to set up SRV records to point to the KDC.
We don't look up address records for a host named "kerberos" unless DNS SRV records or the config file says that that is the name of your KDC.
Ken
More information about the Kerberos
mailing list