MIT kadmin not using DNS
Julius
commercials at gmx.net
Mon Jan 26 22:51:30 EST 2009
On Mon, 2009-01-26 at 19:45 -0500, Richard E. Silverman wrote:
> A (I hope) quick question: I see claims in various places (including
the
> O'Reilly Kerberos book), that kadmin will use DNS SRV records to
locate the
> admin server -- but it doesn't seem to. The Solaris derivative *does*
do
> this, and works for us, but running MIT kadmin in the same environment
> requires the admin_server parameter in krb5.conf.
>
> Any ideas?
>
This works for heimdal
/etc/dnsmasq.conf:
domain=localdomain.de
srv-host=_kerberos-adm._udp,night_crawler.localdomain.de,88
srv-host=_kerberos-adm._tcp,night_crawler.localdomain.de,88
srv-host=_kerberos-adm._tls._tcp,night_crawler.localdomain.de,88
srv-host=_kerberos._udp.LOCALDOMAIN.DE,night_crawler.localdomain.de,88
srv-host=_kerberos._tcp.LOCALDOMAIN.DE,night_crawler.localdomain.de,88
More information about the Kerberos
mailing list