MIT kadmin not using DNS

Julius commercials at gmx.net
Mon Jan 26 22:51:30 EST 2009


On Mon, 2009-01-26 at 19:45 -0500, Richard E. Silverman wrote:
> A (I hope) quick question: I see claims in various places (including
the
> O'Reilly Kerberos book), that kadmin will use DNS SRV records to
locate the
> admin server -- but it doesn't seem to.  The Solaris derivative *does*
do
> this, and works for us, but running MIT kadmin in the same environment
> requires the admin_server parameter in krb5.conf.
> 
> Any ideas?
> 



This works for heimdal

/etc/dnsmasq.conf:

domain=localdomain.de
srv-host=_kerberos-adm._udp,night_crawler.localdomain.de,88
srv-host=_kerberos-adm._tcp,night_crawler.localdomain.de,88
srv-host=_kerberos-adm._tls._tcp,night_crawler.localdomain.de,88
srv-host=_kerberos._udp.LOCALDOMAIN.DE,night_crawler.localdomain.de,88
srv-host=_kerberos._tcp.LOCALDOMAIN.DE,night_crawler.localdomain.de,88





More information about the Kerberos mailing list