[6420] in Kerberos
Re: Kerberos V5 Beta 5 and Slave Servers
daemon@ATHENA.MIT.EDU (Paul Pomes)
Tue Jan 2 10:45:34 1996
To: kerberos@MIT.EDU
Date: 2 Jan 1996 15:28:36 GMT
From: P-Pomes@Qualcomm.com (Paul Pomes)
grumple@grumpy.magg.net (Greg Rumple) writes:
>Okay, I have just spent the last 4 hours trying my darnest to figure out
>how to get a slave server up and running with Kerberos V5 Beta 5 and so far
>all I have done is get frustrated. I could find no real docs on doing
>this (docs need to be written it says). So I second guessed it.
This was last tested with V5B4.3, your mileage may vary. No warranties
expressed or implied.
/pbp
====
#! /bin/sh
#
# krb5_prop - Propagate a Kerberos V5 database to a slave server.
#
# Required steps to set up database backup
#
# Assume admin server resides on zelkova.qualcomm.com and backup server resides
# on monique.qualcomm.com, both in the realm QUALCOMM.COM .
#
# Create the principals
#
# host/zelkova.qualcomm.com@QUALCOMM.COM
# host/monique.qualcomm.com@QUALCOMM.COM
#
# Extract them into their respective /etc/v5srvtab files installed on each host
# (the /etc/v5srvtab file with the host/zelkova.qualcomm.com@QUALCOMM.COM key
# resides on zelkova.qualcomm.com).
#
# Create a /krb5/kpropd.acl file on monique.qualcomm.com that contains the line
# host/zelkova.qualcomm.com@QUALCOMM.COM
#
# Edit /etc/services on both hosts and add the line
#
# krb_prop 754/tcp krb5_prop # Kerberos slave propagation
#
# Edit /etc/inetd.conf on monique.qualcomm.com and add AS A SINGLE LINE
#
# krb5_prop stream tcp nowait root /usr/local/libexec/kpropd
# kpropd -r QUALCOMM.COM -f /krb5/from_master
#
# Send a HUP signal to inetd to have it re-read /etc/inetd.conf.
#
# Edit root's crontab on zelkova.qualcomm.com to add AS A SINGLE LINE
#
# 47 0 * * * /usr/local/libexec/krb5_prop 2>&1 |
# /usr/bin/mailx -s "krb5_prop results" postmaster
cd /krb5
/usr/local/sbin/kdb5_edit -R "dump_db slave_datatrans"
/usr/local/sbin/kprop monique.qualcomm.com
/bin/rm slave_datatrans slave_datatrans.dump_ok
exit 0
--
Show me a woman who doesn't feel guilt and I'll show you a man.
-- Rachel T. Hare-Mustin
