Database Reference
In-Depth Information
Configuring the KDC Server
KDC is the Kerberos server and should be the first step in configuring Kerberos on the
cluster. The following are the steps to install the server packages:
1. Choose a node on the cluster that you would want to set up as the KDC. Ideally,
this node should be used exclusively for the KDC; however, for this demonstra-
tion, I am using
node1.hcluster
for the KDC.
2. Install the
krb5-libs
,
krb5-server
, and
krb5-workstation
packages
on the KDC node. Use the following commands as the
root
user to install the
packages:
$ yum install krb5-libs
$ yum install krb5-server
$ yum install krb5-workstation
3. Update the
krb5.conf
file in the
/etc/
folder from the
root
user as shown in
the following code:
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = MYREALM.COM
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true
[realms]
MYREALM.COM = {
kdc = node1.hcluster
admin_server = node1.hcluster
}
[domain_realm]
