[36098] in Kerberos
Re: Can one install MIT Kerberos master server on PC with dynamic IP
daemon@ATHENA.MIT.EDU (Russ Allbery)
Wed May 7 00:26:03 2014
From: Russ Allbery <eagle@eyrie.org>
To: csanyipal@gmail.com
In-Reply-To: <8761lkwau4.fsf@gmail.com> (csanyipal@gmail.com's message of
"Mon, 05 May 2014 16:37:23 +0200")
Date: Tue, 06 May 2014 21:23:53 -0700
Message-ID: <87ppjqqkrq.fsf@windlord.stanford.edu>
MIME-Version: 1.0
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
csanyipal@gmail.com writes:
> I have a headless powerpc box on which I'm running Debian GNU/Linux 7.5
> (wheezy) operating system.
> These box get IP address from my ISP dynamically with dhcp.
> Can I install and setup MIT Kerberos master server on this box, or must
> I request a fix IP address for this purpose?
You can install a master KDC on such a system. The question is whether
your clients will be able to find it.
The way that clients find a Kerbers server is via either DNS SRV records
or via configured server names in a local /etc/krb5.conf file. Either
way, you need a persistent DNS record pointing to your server or you'll
find it quite difficult for clients to actually use your KDC.
Therefore, if you're using dynamic IP addresses, you'll also need some way
to dynamically update DNS SRV records or A records to point to the new
dynamic IP address. It's possible to arrange that, but it's usually
something you have to go out of your way to do.
--
Russ Allbery (eagle@eyrie.org) <http://www.eyrie.org/~eagle/>
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
