ITPub博客

首页 > Linux操作系统 > Linux操作系统 > nsswtich and krb5.conf setting for linux

nsswtich and krb5.conf setting for linux

原创 Linux操作系统 作者:bontonpan 时间:2009-01-30 11:30:12 0 删除 编辑
1.1 nsswitch.conf
 passwd:      files winbind
     37 shadow:      files
     38 group:       files winbind
     39 #hosts:     db files nisplus nis dns
     40 hosts:      files dns wins nisplus nis
     41
     42 # Example - obey only what nisplus tells us...
     43 #services:   nisplus [NOTFOUND=return] files
     44 #networks:   nisplus [NOTFOUND=return] files
     45 #protocols:  nisplus [NOTFOUND=return] files
     46 #rpc:        nisplus [NOTFOUND=return] files
     47 #ethers:     nisplus [NOTFOUND=return] files
     48 #netmasks:   nisplus [NOTFOUND=return] files
     49
     50 bootparams: nisplus [NOTFOUND=return] files
     51
     52 ethers:     files
     53 netmasks:   files
     54 networks:   files
     55 protocols:  files
     56 rpc:        files
     57 services:   files
     58
     59 netgroup:   nisplus
     60
     61 publickey:  nisplus
     62
     63 automount:  files nisplus
     64 aliases:    files nisplus
1.2 krb5.conf setting
 1 [logging]
      2  default = FILE:/var/log/kerberos/krb5libs.log
      3  kdc = FILE:/var/log/kerberos/krb5kdc.log
      4  admin_server = FILE:/var/log/kerberos/kadmind.log
      5
      6 [libdefaults]
      7  ticket_lifetime = 24000
      8  default_realm = MPECN.FIH.GD
      9  default_tgs_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
     10  default_tkt_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
     11  permitted_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
     12  dns_lookup_realm = false
     13  dns_lookup_kdc = false
     14  kdc_req_checksum_type = 2
     15  checksum_type = 2
     16  ccache_type = 1
     17  forwardable = true
     18  proxiable = true
     19
     20 [realms]
     21  FIH.GD = {
     22   kdc = 10.134.93.70:88
     23   admin_server = 10.134.93.70:749
     24   default_domain = fih.gd
     25  }
     26  BJCN.FIH.GD = {
     27   kdc = 10.186.19.10:88
     28   admin_server = 10.186.19.10:749
     29   default_domain = bjcn.fih.gd
     30  }
     31  MPECN.FIH.GD = {
     32   kdc = 10.167.66.105:88
     33   admin_server = 10.167.66.105:749
     34   default_domain = mpecn.fih.gd
     35  }
     36  MPM.FIH.GD = {
     37    kdc = 10.162.128.84:88
     38    admin_server = 10.162.128.84:749
     39    default_domain = mpm.fih.gd
     40  }
[domain_realm]
     43   .fih.gd = FIH.GD
     44   fih.gd = FIH.GD
     45   .mpecn.fih.gd = MPECN.FIH.GD
     46   mpecn.fih.gd = MPECN.FIH.GD
     47   .bjcn.fih.gd = BJCN.FIH.GD
     48   bjcn.fih.gd = BJCN.FIH.GD
     49   .mpm.fih.gd = MPM.FIH.GD
     50   mpm.fih.gd = MPM.FIH.GD
     51
     52 [kdc]
     53  profile = /etc/kerberos/krb5kdc/kdc.conf
     54
     55 [pam]
     56  debug = false
     57  ticket_lifetime = 36000
     58  renew_lifetime = 36000
     59  forwardable = true
     60  krb4_convert = false
     61
     62  [login]
     63  krb4_convert = false
     64  krb4_get_tickets = false

来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/11754813/viewspace-544781/,如需转载,请注明出处,否则将追究法律责任。

请登录后发表评论 登录
全部评论

注册时间:2009-01-30

  • 博文量
    51
  • 访问量
    37205