This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
настройка_kdc_серверов_и_клиентов [2019/07/02 14:44] val [Настройка] |
настройка_kdc_серверов_и_клиентов [2023/02/17 10:32] (current) val [Отладка] |
||
---|---|---|---|
Line 4: | Line 4: | ||
* [[Финальная настройка DNS сервера]] | * [[Финальная настройка DNS сервера]] | ||
+ | * [[Сервис DNS#Утилиты тестирования DNS]] | ||
* [[Сервис NTP]] | * [[Сервис NTP]] | ||
Line 15: | Line 16: | ||
root@server:~# apt install krb5-kdc krb5-admin-server | root@server:~# apt install krb5-kdc krb5-admin-server | ||
</code> | </code> | ||
- | |||
- | === FreeBSD (Heimdal) === | ||
- | <code> | ||
- | [server:~] # cat /etc/rc.conf | ||
- | </code><code> | ||
- | ... | ||
- | kdc_enable="YES" # FreeBSD10 | ||
- | ... | ||
- | </code> | ||
- | |||
==== Настройка ==== | ==== Настройка ==== | ||
Line 48: | Line 39: | ||
</code> | </code> | ||
- | === FreeBSD (Heimdal) === | + | |
- | <code> | + | |
- | server# kstash | + | |
- | </code><code> | + | |
- | Master key: sdfsd787sg8df7gsd | + | |
- | </code><code> | + | |
- | server# kadmin -l | + | |
- | </code><code> | + | |
- | kadmin> init CORPX.UN | + | |
- | Realm max ticket life [unlimited]: | + | |
- | Realm max renewable ticket life [unlimited]: | + | |
- | kadmin> quit | + | |
- | </code> | + | |
==== Запуск ==== | ==== Запуск ==== | ||
- | |||
- | === FreeBSD10 === | ||
- | <code> | ||
- | [server:~] # service kdc start | ||
- | </code> | ||
=== Ubuntu/Debian === | === Ubuntu/Debian === | ||
Line 75: | Line 49: | ||
==== Отладка ==== | ==== Отладка ==== | ||
- | |||
- | === FreeBSD === | ||
- | <code> | ||
- | server# tail -f /var/heimdal/kdc.log | ||
- | </code> | ||
=== Debian/Ubuntu === | === Debian/Ubuntu === | ||
Line 85: | Line 54: | ||
server# tail -f /var/log/auth.log | server# tail -f /var/log/auth.log | ||
</code> | </code> | ||
+ | |||
+ | * [[ Регистрация ключей принципалов в KDC]] | ||
===== Настройка Kerberos клиента ===== | ===== Настройка Kerberos клиента ===== | ||
Line 111: | Line 82: | ||
</code> | </code> | ||
+ | ===== FreeBSD (Heimdal) ===== | ||
+ | |||
+ | <code> | ||
+ | [server:~] # cat /etc/rc.conf | ||
+ | </code><code> | ||
+ | ... | ||
+ | kdc_enable="YES" # FreeBSD10 | ||
+ | ... | ||
+ | </code> | ||
+ | |||
+ | <code> | ||
+ | server# kstash | ||
+ | </code><code> | ||
+ | Master key: sdfsd787sg8df7gsd | ||
+ | </code><code> | ||
+ | server# kadmin -l | ||
+ | </code><code> | ||
+ | kadmin> init CORPX.UN | ||
+ | Realm max ticket life [unlimited]: | ||
+ | Realm max renewable ticket life [unlimited]: | ||
+ | kadmin> quit | ||
+ | </code> | ||
+ | <code> | ||
+ | [server:~] # service kdc start | ||
+ | </code> | ||
+ | |||
+ | <code> | ||
+ | server# tail -f /var/heimdal/kdc.log | ||
+ | </code> |