[3271] in Kerberos
master / slave server
daemon@ATHENA.MIT.EDU (houlea@mail.firn.edu)
Fri May 13 14:05:57 1994
To: kerberos@MIT.EDU
Date: Fri, 13 May 94 13:34:59 CST
From: <houlea@mail.firn.edu>
Hello,
I now have kerberos v4 operating as a server for som Xyplex terminal
servers. My next goal is to bring up a secondary kerberos server so that
if the first one is down or otherwise unavailable, the second server can
validate users on our terminal servers.
I have made and installed the software on the second Sun but am having
problems:
I was able to do a kdb_init, kstash, kdb_edit, and start kerberos
and kadmind. When I started kinit, it gave me a segmentation fault and
dumped core. I suspect the definitions in krb.h since I don't quite
understand what to do with master/slave system.
In both primary and secondary systems, the krb.h file contains:
KRB_MASTER "kerberos"
KRB_HOST KRB_MASTER
KRB_REALM "ATHENA.FIRN.EDU"
in the krb.conf on both Suns file I have:
ATHENA.FIRN.EDU
ATHENA.FIRN.EDU firnsn.firn.edu admin server
ATHENA.FIRN.EDU firnsn2.firn.edu
The docs say 'KRB_MASTER is the name of the machine with the master
database.' ... What does 'name' mean here? Should these be registered IP
names in a nameserver?
Another unknown, how is the master database propogated to the secondary
server? What about password changes? If the master server is down, and the
terminal server uses the secondary to change a password, will that
propagate back to the primary kerberos server when it comes back on line?
Thanks in advance for your help.
Art Houle houlea@mail.firn.edu (904) 487-8677
