|
|
|
|
@ -2,7 +2,7 @@
|
|
|
|
|
%%Title: krb5quick.txt |
|
|
|
|
%%For: Michael Schloh |
|
|
|
|
%%Creator: a2ps version 4.13 |
|
|
|
|
%%CreationDate: Tue Aug 26 17:20:32 2003 |
|
|
|
|
%%CreationDate: Thurs Oct 30 15:34:01 2003 |
|
|
|
|
%%BoundingBox: 24 24 571 818 |
|
|
|
|
%%DocumentData: Clean7Bit |
|
|
|
|
%%Orientation: Portrait |
|
|
|
|
@ -603,50 +603,6 @@ def
|
|
|
|
|
/y0 0 def |
|
|
|
|
%%EndSetup |
|
|
|
|
|
|
|
|
|
% |
|
|
|
|
% Quickstart Guide to the OpenPKG Kerberos Package |
|
|
|
|
% Michael Schloh von Bennewitz |
|
|
|
|
% ms@openpkg.org |
|
|
|
|
% 26 August 2003 |
|
|
|
|
% |
|
|
|
|
% To begin using Kerberos after installing the OpenPKG Kerberos package, a database, acl |
|
|
|
|
% file, administrative principal, and keytab file must exist. To create these, issue the |
|
|
|
|
% following commands. |
|
|
|
|
% |
|
|
|
|
% Remember that these Kerberos operations depend on how the Kerberos installation is |
|
|
|
|
% configured. To understand what will happen when issuing the commands, view the generic |
|
|
|
|
% OpenPKG Kerberos configuration files first. |
|
|
|
|
% |
|
|
|
|
% Files: |
|
|
|
|
% @l_prefix@/etc/kerberos/krb5.conf |
|
|
|
|
% @l_prefix@/etc/kerberos/kdc.conf |
|
|
|
|
% |
|
|
|
|
% Commands: |
|
|
|
|
% @l_prefix@/libexec/kerberos/kdb5_util create -r EXAMPLE.OPENPKG.ORG -s |
|
|
|
|
% aclfile=`grep 'acl_file = ' @l_prefix@/etc/kerberos/kdc.conf | \ |
|
|
|
|
% sed -e 's/.*acl_file = //'` |
|
|
|
|
% echo '*/admin@EXAMPLE.OPENPKG.ORG *' >$aclfile |
|
|
|
|
% chmod 600 $aclfile |
|
|
|
|
% @l_prefix@/libexec/kerberos/kadmin.local -q "addprinc admin/admin@EXAMPLE.OPENPKG.ORG" |
|
|
|
|
% @l_prefix@/libexec/kerberos/kadmin.local -q \ |
|
|
|
|
% "ktadd -k @l_prefix@/var/kerberos/kadm5.keytab kadmin/admin kadmin/changepw" |
|
|
|
|
% @l_prefix@/etc/rc kerberos start |
|
|
|
|
% @l_prefix@/etc/rc kerberos stop |
|
|
|
|
% |
|
|
|
|
% Once finished, examine the log files placed in the following location if the fsl option |
|
|
|
|
% is used (as it is by default). |
|
|
|
|
% |
|
|
|
|
% @l_prefix@/var/kerberos/log |
|
|
|
|
% |
|
|
|
|
% Ensure that the installation and configuration are both correct. Now add principals for |
|
|
|
|
% users, hosts, and services. Tweak the configuration, kerberize some client and server |
|
|
|
|
% software, and build yourself an authenicated network of hosts with Kerberos. |
|
|
|
|
% |
|
|
|
|
% Topics beyond this quickstart are explained in the packaged Kerberos documentation at |
|
|
|
|
% @l_prefix@/share/kerberos/. An additional source is a useful guide by V. Alex BRENNEN |
|
|
|
|
% at http://www.cryptnet.net/fdp/crypto/kerby-infra.html. |
|
|
|
|
% |
|
|
|
|
|
|
|
|
|
%%Page: (1) 1 |
|
|
|
|
%%BeginPageSetup |
|
|
|
|
/pagesave save def |
|
|
|
|
@ -664,16 +620,16 @@ x0 y0 moveto
|
|
|
|
|
() N |
|
|
|
|
( Michael Schloh von Bennewitz) N |
|
|
|
|
( michael@schloh.com) N |
|
|
|
|
( 26 August 2003) N |
|
|
|
|
( 28 October 2003) N |
|
|
|
|
() N |
|
|
|
|
() N |
|
|
|
|
( To begin using Kerberos after installing the OpenPKG Kerberos package, a database, acl) N |
|
|
|
|
( file, administrative principal, and keytab file must exist. To create these, issue the) N |
|
|
|
|
( following commands.) N |
|
|
|
|
( file, administrative principal, and keytab file must be present. To create these, issue) N |
|
|
|
|
( the following commands.) N |
|
|
|
|
() N |
|
|
|
|
( Remember that these Kerberos operations depend on how the Kerberos installation is) N |
|
|
|
|
( configured. To understand what will happen when issuing the commands, view the generic) N |
|
|
|
|
( OpenPKG Kerberos configuration files first.) N |
|
|
|
|
( configured. To better understand what will happen when issuing the commands, view the) N |
|
|
|
|
( generic OpenPKG Kerberos configuration files first.) N |
|
|
|
|
() N |
|
|
|
|
( Files:) N |
|
|
|
|
( @l_prefix@/etc/kerberos/krb5.conf) N |
|
|
|
|
|
Michael Schloh von Bennewitz
