How to use NFS with multiple principals in different realms?
Simo Sorce
simo at redhat.com
Wed Sep 17 11:05:28 EDT 2014
On Wed, 17 Sep 2014 13:20:19 +0200
Cedric Blancher <cedric.blancher at gmail.com> wrote:
> What happens if there is no relation between KRB Realm names and
> FQDN/DNS? Can the NFS client find out which KRB Realm is used by the
> server?
Depending on the environment you may have 1 or 2 ways.
1. add domain to realm mapping in the appropriate section in krb5.conf
on the client.
2. allow the KDC to send back a referral (but not all clients will ask
their own KDC, some can do only 1).
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Kerberos
mailing list