Kerberos - Client Setup Flashcards

1
Q

Kerberos Client Setup

A

useradd wemery
vim /etc/hosts

yum install -y krb5-workstation pam_krb5

vim /etc/krb5.conf
# Configuration snippets may be placed in this directory as well
includedir /etc/krb5.conf.d/

[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log

[libdefaults]
 dns_lookup_realm = false
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
 rdns = false
 default_realm = MYLABSERVER.COM
 default_ccache_name = KEYRING:persistent:%{uid}
[realms]
 MYLABSERVER.COM = {
  kdc = we3kb1.mylabserver.com
  admin_server = we3kb1.mylabserver.com
 }

[domain_realm]
.mylabserver.com = MYLABSERVER.COM
mylabserver.com = MYLABSERVER.COM

kadmin
addprinc -randkey host/we3kb2.mylabserver.com
ktadd host/we3kb2.mylabserver.com

authconfig –enablekrb5 –update

su - wemery
kinit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly