1.1 nsswitch.conf
passwd: files winbind
37 shadow: files
38 group: files winbind
39 #hosts: db files nisplus nis dns
40 hosts: files dns wins nisplus nis
41
42 # Example - obey only what nisplus tells us...
43 #services: nisplus [NOTFOUND=return] files
44 #networks: nisplus [NOTFOUND=return] files
45 #protocols: nisplus [NOTFOUND=return] files
46 #rpc: nisplus [NOTFOUND=return] files
47 #ethers: nisplus [NOTFOUND=return] files
48 #netmasks: nisplus [NOTFOUND=return] files
49
50 bootparams: nisplus [NOTFOUND=return] files
51
52 ethers: files
53 netmasks: files
54 networks: files
55 protocols: files
56 rpc: files
57 services: files
58
59 netgroup: nisplus
60
61 publickey: nisplus
62
63 automount: files nisplus
64 aliases: files nisplus
1.2 krb5.conf setting
1 [logging]
2 default = FILE:/var/log/kerberos/krb5libs.log
3 kdc = FILE:/var/log/kerberos/krb5kdc.log
4 admin_server = FILE:/var/log/kerberos/kadmind.log
5
6 [libdefaults]
7 ticket_lifetime = 24000
8 default_realm = MPECN.FIH.GD
9 default_tgs_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
10 default_tkt_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
11 permitted_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
12 dns_lookup_realm = false
13 dns_lookup_kdc = false
14 kdc_req_checksum_type = 2
15 checksum_type = 2
16 ccache_type = 1
17 forwardable = true
18 proxiable = true
19
20 [realms]
21 FIH.GD = {
22 kdc = 10.134.93.70:88
23 admin_server = 10.134.93.70:749
24 default_domain = fih.gd
25 }
26 BJCN.FIH.GD = {
27 kdc = 10.186.19.10:88
28 admin_server = 10.186.19.10:749
29 default_domain = bjcn.fih.gd
30 }
31 MPECN.FIH.GD = {
32 kdc = 10.167.66.105:88
33 admin_server = 10.167.66.105:749
34 default_domain = mpecn.fih.gd
35 }
36 MPM.FIH.GD = {
37 kdc = 10.162.128.84:88
38 admin_server = 10.162.128.84:749
39 default_domain = mpm.fih.gd
40 }
[domain_realm]
43 .fih.gd = FIH.GD
44 fih.gd = FIH.GD
45 .mpecn.fih.gd = MPECN.FIH.GD
46 mpecn.fih.gd = MPECN.FIH.GD
47 .bjcn.fih.gd = BJCN.FIH.GD
48 bjcn.fih.gd = BJCN.FIH.GD
49 .mpm.fih.gd = MPM.FIH.GD
50 mpm.fih.gd = MPM.FIH.GD
51
52 [kdc]
53 profile = /etc/kerberos/krb5kdc/kdc.conf
54
55 [pam]
56 debug = false
57 ticket_lifetime = 36000
58 renew_lifetime = 36000
59 forwardable = true
60 krb4_convert = false
61
62 [login]
63 krb4_convert = false
64 krb4_get_tickets = false
passwd: files winbind
37 shadow: files
38 group: files winbind
39 #hosts: db files nisplus nis dns
40 hosts: files dns wins nisplus nis
41
42 # Example - obey only what nisplus tells us...
43 #services: nisplus [NOTFOUND=return] files
44 #networks: nisplus [NOTFOUND=return] files
45 #protocols: nisplus [NOTFOUND=return] files
46 #rpc: nisplus [NOTFOUND=return] files
47 #ethers: nisplus [NOTFOUND=return] files
48 #netmasks: nisplus [NOTFOUND=return] files
49
50 bootparams: nisplus [NOTFOUND=return] files
51
52 ethers: files
53 netmasks: files
54 networks: files
55 protocols: files
56 rpc: files
57 services: files
58
59 netgroup: nisplus
60
61 publickey: nisplus
62
63 automount: files nisplus
64 aliases: files nisplus
1.2 krb5.conf setting
1 [logging]
2 default = FILE:/var/log/kerberos/krb5libs.log
3 kdc = FILE:/var/log/kerberos/krb5kdc.log
4 admin_server = FILE:/var/log/kerberos/kadmind.log
5
6 [libdefaults]
7 ticket_lifetime = 24000
8 default_realm = MPECN.FIH.GD
9 default_tgs_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
10 default_tkt_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
11 permitted_enctypes = rc4-hmac des3-hmac-sha1 des-cbc-md5 des-cbc-crc
12 dns_lookup_realm = false
13 dns_lookup_kdc = false
14 kdc_req_checksum_type = 2
15 checksum_type = 2
16 ccache_type = 1
17 forwardable = true
18 proxiable = true
19
20 [realms]
21 FIH.GD = {
22 kdc = 10.134.93.70:88
23 admin_server = 10.134.93.70:749
24 default_domain = fih.gd
25 }
26 BJCN.FIH.GD = {
27 kdc = 10.186.19.10:88
28 admin_server = 10.186.19.10:749
29 default_domain = bjcn.fih.gd
30 }
31 MPECN.FIH.GD = {
32 kdc = 10.167.66.105:88
33 admin_server = 10.167.66.105:749
34 default_domain = mpecn.fih.gd
35 }
36 MPM.FIH.GD = {
37 kdc = 10.162.128.84:88
38 admin_server = 10.162.128.84:749
39 default_domain = mpm.fih.gd
40 }
[domain_realm]
43 .fih.gd = FIH.GD
44 fih.gd = FIH.GD
45 .mpecn.fih.gd = MPECN.FIH.GD
46 mpecn.fih.gd = MPECN.FIH.GD
47 .bjcn.fih.gd = BJCN.FIH.GD
48 bjcn.fih.gd = BJCN.FIH.GD
49 .mpm.fih.gd = MPM.FIH.GD
50 mpm.fih.gd = MPM.FIH.GD
51
52 [kdc]
53 profile = /etc/kerberos/krb5kdc/kdc.conf
54
55 [pam]
56 debug = false
57 ticket_lifetime = 36000
58 renew_lifetime = 36000
59 forwardable = true
60 krb4_convert = false
61
62 [login]
63 krb4_convert = false
64 krb4_get_tickets = false
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/11754813/viewspace-544781/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/11754813/viewspace-544781/