redhat6.4下面安裝kerberos
一、安裝rpm包
rpm -ivh krb5-libs-1.10.3-10.el6.x86_64.rpm
rpm -ivh krb5-server-1.10.3-10.el6.x86_64.rpm
rpm -ivh krb5-workstation-1.10.3-10.el6.x86_64.rpm html
二、配置文件
/var/kerberos/krb5kdc/kdc.conf
內容以下:
[kdcdefaults]
kdc_ports = 750,88 node
[realms]
psy.com = {
database_name=/var/kerberos/krb5kdc/principal
admin_keytab = /var/kerberos/krb5kdc/kadm5.keytab
acl_file = /var/kerberos/krb5kdc/kadm5.acl
key_stash_file=/var/kerberos/krb5kdc/.k5.psy.com
kdc_ports=750,88
max_life=10h 0m 0s
max_renewable_life=7d 0h 0m 0s
}
/etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log web
[libdefaults]
default_realm = psy.com
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true shell
[realms]
psy.com = {
kdc = worknode
admin_server = worknode
} 數據庫
三、生成數據庫
kdb5_util create -r psy.com -s
四、建立管理用戶
運行kadmin.local
addprinc admin/admin@psy.com
ktadd -k /var/kerberos/krb5kdc/kadm5.keytab kadmin/admin kadmin/changepw dom
五、編輯/etc/services
# # Kerberos (Project Athena/MIT) services
#kerberos 88/udp kdc # Kerberos 5 kdc
#kerberos 88/tcp kdc # Kerberos 5 kdc
#klogin 543/tcp # Kerberos rlogin -kfall
#kshell 544/tcp krcmd # Kerberos remote shell -kfall
krb5_prop 754/tcp # Kerberos v5 slave propagation
kerberos-adm 749/tcp # Kerberos v5 admin/chpwd
kerberos-adm 749/udp # Kerberos v5 admin/chpwd
#eklogin 2105/tcp # Kerberos encrypted rlogin -kfall
kpasswd 761/tcp kpwd # Kerberos "passwd" -kfall
#ktelnet 545/tcp # Kerberized telnet v4/v5
#kftp-data 546/tcp # Kerberized ftp data V5
#kftp 547/tcp # Kerberized ftp v5 tcp
六、重啓krb5kdc 和kadmin服務
/etc/init.d/krb5kdc restart
/etc/init.d/kadmin restart oop
七、本機測試客戶端鏈接
kinit admin/admin 測試
八、遠程客戶機測試鏈接
須要配置相同的kdc.conf和krb5.conf
而後測試kinit admin/admin spa
問題:
[root@hadoop Packages]# kdb5_util create -r psy.com -s
Loading random data
一般是配置有問題,不是全部的EXAMPE.COM 都被替換成psy.com了。也有多是建立的時間長一點。
參考連接:
http://web.ornl.gov/~jar/HowToKerb.html#Kerbnet- 1. linux RedHat6.4下nginx安裝
- 2. Redhat6.4下DM7的ODBC安裝
- 3. redhat6.4安裝yum
- 4. Redhat6.4安裝MongoDBv3.6.3
- 5. redhat6.4安裝R-3.3.1
- 6. 在redhat6.4安裝redis集羣
- 7. redhat6.4簡便安裝yum
- 8. 安裝Kerberos
- 9. Kerberos安裝
- 10. 在redhat6.4系統上安裝yum,下載安裝rpm包
- 更多相關文章...
- • Wireshark下載安裝和使用教程 - TCP/IP教程
- • Docker 安裝 Nginx - Docker教程
- • Composer 安裝與使用
- • IntelliJ IDEA安裝代碼格式化插件
-
每一个你不满意的现在,都有一个你没有努力的曾经。