[36662] in Kerberos
Fail over in krb5.conf to next listed KDC entry?
daemon@ATHENA.MIT.EDU (Todd Grayson)
Tue Dec 9 00:20:54 2014
MIME-Version: 1.0
From: Todd Grayson <tgrayson@cloudera.com>
Date: Mon, 8 Dec 2014 22:20:11 -0700
Message-ID: <CALNT6MVwkD2+LJdsvM7NgqHSm0fhR82Lfhi-HgOW9UJ7DtsF6Q@mail.gmail.com>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Is there a configurable timeout value that can be set in the krb5.conf to
tell a client how long to wait for a response from a KDC before failing
over to the next listed kdc entry for a specific REALM in the [realms]
section of the krb5.conf?
When looking at
http://web.mit.edu/kerberos/krb5-devel/doc/admin/conf_files/krb5_conf.html
there is no reference to "kdc_timeout" which I've seen previously mentioned
in oracle threads.
Is that kdc_timeout parameter only for sun/oracle's solaris SEAM
implementation of kerberos?
Or is only the java JGSS implementation recognizing this kdc_timeout value?
Or is kdc_timeout a missing parameter within the current (and previous)
krb5.conf documentation for the [libdefaults], and it is supported in the
1.10+ MIT kerberos releases?
Thanks in advance.
--
Todd Grayson
Customer Operations Engineering
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
