Kerberos module config
John T. Guthrie
guthrie at counterexample.org
Tue Mar 13 05:58:24 CET 2007
On Mon, 2007-03-12 at 12:45 -0400, John T. Guthrie wrote:
> Hello all,
>
> I was just looking through the Kerberos code in rlm_krb5.c, and I found
> this little code snippet:
>
> static CONF_PARSER module_config[] = {
> { "keytab", PW_TYPE_STRING_PTR,
> offsetof(rlm_krb5_t,keytab), NULL, NULL },
> { "service_principal", PW_TYPE_STRING_PTR,
> offsetof(rlm_krb5_t,service_princ), NULL, NULL },
> { NULL, -1, 0, NULL, NULL }
> };
>
> Does this mean that the kerberos module can be configured with both a
> keytab and a service principal? (In which case, is the default service
> principal the string "host"?)
>
> Thanks.
Well, when all else fails, read the documentation. I just checked the
wiki on the website, and it says that the answer to my question is yes.
However, I went ahead and wrote a patch to the radiusd.conf.in file in
the source code to add in ome documentation for configuring Kerberos.
Where would be the best place to post that patch.
Thanks.
--
John Guthrie
guthrie at counterexample.org
More information about the Freeradius-Users
mailing list