[Freeipa-users] /var/kerberos/krb5kdc/principal missing
Rob Crittenden
rcritten at redhat.com
Thu Oct 3 18:16:36 UTC 2013
Brian J. Murrell wrote:
> On 13-10-03 11:49 AM, Rob Crittenden wrote:
>>
>> Can clues on how it got to this point? Files changed, etc?
>
> Not really. This machine has been sitting mostly dormant in fact since
> I was last working on it a week or two ago.
>
>> What does the dbmodules section of /etc/krb5.conf look like?
>
> And there it goes. Did you hear the other shoe drop? :-)
>
> A badly written configuration management recipe overwrote that file.
>
> I have one from an older FreeIPA that I can re-mold for this server but
> if anyone has one from a current EL6.4 machine I would feel more
> comfortable that I have a representative replacement.
>
> Cheers,
> b.
>
includedir /var/lib/sss/pubconf/krb5.include.d
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
default_realm = EXAMPLE.COM
dns_lookup_realm = false
dns_lookup_kdc = true
rdns = false
ticket_lifetime = 24h
forwardable = yes
[realms]
EXAMPLE.COM = {
kdc = ipa.EXAMPLE.COM:88
master_kdc = ipa.EXAMPLE.COM:88
admin_server = ipa.EXAMPLE.COM:749
default_domain = EXAMPLE.COM
pkinit_anchors = FILE:/etc/ipa/ca.crt
}
[domain_realm]
.EXAMPLE.COM = EXAMPLE.COM
EXAMPLE.COM = EXAMPLE.COM
[dbmodules]
EXAMPLE.COM = {
db_library = ipadb.so
}
More information about the Freeipa-users
mailing list