[BACK]Return to krb5.conf.example CVS log [TXT][DIR] Up to [local] / src / etc / kerberosV
File: [local] / src / etc / kerberosV / Attic / krb5.conf.example (download)

Revision 1.6, Mon Feb 7 06:08:10 2005 UTC (19 years, 3 months ago) by david
Branch: MAIN
CVS Tags: OPENBSD_5_3_BASE, OPENBSD_5_3, OPENBSD_5_2_BASE, OPENBSD_5_2, OPENBSD_5_1_BASE, OPENBSD_5_1, OPENBSD_5_0_BASE, OPENBSD_5_0, OPENBSD_4_9_BASE, OPENBSD_4_9, OPENBSD_4_8_BASE, OPENBSD_4_8, OPENBSD_4_7_BASE, OPENBSD_4_7, OPENBSD_4_6_BASE, OPENBSD_4_6, OPENBSD_4_5_BASE, OPENBSD_4_5, OPENBSD_4_4_BASE, OPENBSD_4_4, OPENBSD_4_3_BASE, OPENBSD_4_3, OPENBSD_4_2_BASE, OPENBSD_4_2, OPENBSD_4_1_BASE, OPENBSD_4_1, OPENBSD_4_0_BASE, OPENBSD_4_0, OPENBSD_3_9_BASE, OPENBSD_3_9, OPENBSD_3_8_BASE, OPENBSD_3_8, OPENBSD_3_7_BASE, OPENBSD_3_7
Changes since 1.5: +2 -2 lines 

indentation whitespace nits

# $OpenBSD: krb5.conf.example,v 1.6 2005/02/07 06:08:10 david Exp $
#
# Example Kerberos 5 configuration file. You may need to change the defaults
# in this file to match your environment.
#
# See krb5.conf(5) and the heimdal infopage for more information.
#
# Normally, the realm should be your DNS domain name with uppercase
# letters. In this example file, we've written the realm as MY.REALM
# and the domain as my.domain to make it clear what we refer to.
#
# Normally, it is not necessary to do any changes on client-only
# machines, as it's recommended that the information needed is put
# in DNS.
# On server machines, it is not strictly necessary, but it is recommended
# to have local configuration.
#
[libdefaults]
	# Set the realm of this host here
	default_realm = MY.REALM

	# Maximum allowed time difference between KDC and this host
	clockskew = 300

	# Uncomment this if you run NAT on the client side of kauth.
	# This may be considered a security issue though.
	# no-addresses = yes

[realms]
	MY.REALM = {
		# Specify KDC here
		kdc = kerberos.my.domain

		# Administration server, used for creating users etc.
		admin_server = kerberos.my.domain
	}

	# Example of a "foreign" realm
	OTHER.REALM = {
		kdc = kerberos.other.domain
		default_domain = other.domain
		v4_domains = other.domain
	}

# This sections describes how to figure out a realm given a DNS name
[domain_realm]
	.my.domain = MY.REALM


[kadmin]
	# This is the trickiest part of a Kerberos installation. See the
	# heimdal infopage for more information about encryption types.

	# For a k5 only realm, this will be fine
#	default_keys = v5

[logging]
	# The KDC logs by default, but it's nice to have a kadmind log as well.
	kadmind = FILE:/var/heimdal/kadmind.log