[32469] in Kerberos
Re: Variable kdc on kerberos.
daemon@ATHENA.MIT.EDU (Simo Sorce)
Thu Jun 17 15:25:38 2010
Date: Thu, 17 Jun 2010 15:25:26 -0400
From: Simo Sorce <ssorce@redhat.com>
To: Greg Hudson <ghudson@mit.edu>
Message-ID: <20100617152526.1fa4a017@willson.li.ssimo.org>
In-Reply-To: <1276800717.12977.163.camel@ray>
Mime-Version: 1.0
Cc: "Kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Thu, 17 Jun 2010 14:51:57 -0400
Greg Hudson <ghudson@MIT.EDU> wrote:
> On Thu, 2010-06-17 at 12:48 -0400, gael therond wrote:
> > Hi All, is there a way to set a variable, instead of a constant on
> > the kerberos config file under the kdc option?
> > I've a lot of Active Directory on my network, so if I want contact
> > the closer one I've to use variables to retrieve informations of
> > our local Dns.
>
> You mean like an environment variable? No... although you could use
> the environment variable KRB5_CONFIG to determine which krb5.conf
> file is read.
>
> Another possible direction is to arrange for SRV lookups to return the
> best possible KDC, although putting that much cleverness into DNS
> isn't always easy or wise.
We (samba) use a locate plugin with winbindd to handle that properly.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
