added full ldap/kerberos support to authnz module, add mam as exemple
This commit is contained in:
36
repo/common/authnz/krb5.conf
Normal file
36
repo/common/authnz/krb5.conf
Normal file
@@ -0,0 +1,36 @@
|
||||
[libdefaults]
|
||||
default_realm = @REALM@
|
||||
|
||||
# The following krb5.conf variables are only for MIT Kerberos.
|
||||
kdc_timesync = 1
|
||||
ccache_type = 4
|
||||
forwardable = true
|
||||
proxiable = true
|
||||
|
||||
# The following encryption type specification will be used by MIT Kerberos
|
||||
# if uncommented. In general, the defaults in the MIT Kerberos code are
|
||||
# correct and overriding these specifications only serves to disable new
|
||||
# encryption types as they are added, creating interoperability problems.
|
||||
#
|
||||
# The only time when you might need to uncomment these lines and change
|
||||
# the enctypes is if you have local software that will break on ticket
|
||||
# caches containing ticket encryption types it doesn't know about (such as
|
||||
# old versions of Sun Java).
|
||||
|
||||
# default_tgs_enctypes = des3-hmac-sha1
|
||||
# default_tkt_enctypes = des3-hmac-sha1
|
||||
# permitted_enctypes = des3-hmac-sha1
|
||||
|
||||
# The following libdefaults parameters are only for Heimdal Kerberos.
|
||||
fcc-mit-ticketflags = true
|
||||
|
||||
[realms]
|
||||
MIXART-MYRYS.ORG = {
|
||||
kdc = @KDC_SERVER@
|
||||
admin_server = @KADM_SERVER@
|
||||
}
|
||||
|
||||
[domain_realm]
|
||||
.@DOMAIN@ = @REALM@
|
||||
@DOMAIN@ = @REALM@
|
||||
|
||||
Reference in New Issue
Block a user