Kerberizing RHEL Server
- Jun
- 13
- Posted by TKH Specialist
- Posted in RedHat 6, RedHat 7, System Administration
Notes from Plone…
yum install krb5-workstation pam_krb5 -y
# if krb5.conf is present we should get a fresh copy
mv /etc/krb5.conf /etc/krb5.conf.bak
yum reinstall krb5-libs -y
sed -ie 's/example.com/FQDN/g' /etc/krb5.conf
sed -ie 's/EXAMPLE.COM/FQDN/g' /etc/krb5.conf
fqdn=`hostname --fqdn`;
echo " ank -randkey host/$fqdn@FQDN ktadd -k /etc/krb5.keytab host/$fqdn@FQDN "; --- OR --- kadmin netid/admin@FQDN addprinc -randkey host/$fqdn ktadd -k /etc/krb5.keytab host/$fqdn modprinc -requires_preauth host/$fqdn
kadmin -p netid/admin@FQDN
exit
authconfig --enablekrb5 --updateall
echo "netid/admin@FQDN" >> ~/.k5login
restorecon ~/.k5login
chmod 600 .k5login
service sshd restart
Recent Comments
- Stefan on Flush This!
- Timestamping your Bash History | Matt's Entropy on Remember when you issued that command…?
- Matt Smith on Remember when you issued that command…?
- Ruan on Putting ‘lsof’ to use
- Dylan F. Marquis on External Mapping of LDAP attributes in CAS