Multiple keytabs on Kerberos

Arran Cudbard-Bell a.cudbardb at freeradius.org
Mon Oct 1 11:39:24 CEST 2018



> On Oct 1, 2018, at 5:33 PM, LAUDREN Olivier <olivier.laudren at ext.europarl.europa.eu> wrote:
> 
> Hello,
> 
> Is there a way to use more than 1 keytab and SPN in a FreeRADIUS configuration (I mean on the same FreeRADIUS server)?
> If so, how to do it?

By creating multiple instances of the rlm_krb5 module.

krb5 krb5_my_first_keytab {
	keytab = "<path to keytab>"
}

krb5 krb5_my_second_keytab {
	keytab = "<path to keytab>"
}

You can then list them in sites-available/<virtual server> by their instance names i.e. krb5_my_first_keytab and krb5_my_second_keytab.

-Arran




More information about the Freeradius-Users mailing list