svn commit: samba r24650 - in branches/SAMBA_4_0/source/setup: .
idra at samba.org
idra at samba.org
Fri Aug 24 13:21:44 GMT 2007
Author: idra
Date: 2007-08-24 13:21:43 +0000 (Fri, 24 Aug 2007)
New Revision: 24650
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=24650
Log:
Some more instructions to have make GSS-TSIG work
Modified:
branches/SAMBA_4_0/source/setup/named.conf
Changeset:
Modified: branches/SAMBA_4_0/source/setup/named.conf
===================================================================
--- branches/SAMBA_4_0/source/setup/named.conf 2007-08-24 11:25:38 UTC (rev 24649)
+++ branches/SAMBA_4_0/source/setup/named.conf 2007-08-24 13:21:43 UTC (rev 24650)
@@ -1,10 +1,22 @@
#
-# Insert this snippit into your named.conf or bind.conf to configure
+# Insert these snippets into your named.conf or bind.conf to configure
# the BIND nameserver.
#
+#insert this into options {}
+tkey-gssapi-credential "DNS/${DNSDOMAIN}"
+tkey-domain "${REALM}";
+
+#the zone file
zone "${DNSDOMAIN}." IN {
type master;
file "${DNSDOMAIN}.zone";
};
+# Also, you need to change your init scripts to set this environment variable
+# for named: KRB_KTNAME so that it points to the keytab generated.
+# In RedHat derived systems such RHEL/CentOS/Fedora you can add the following
+# line to the /etc/sysconfig/named file
+# export KRB_KTNAME=/etc/named.keytab
+
+# *TODO*: generate and install a keytab file in /etc/named.keytab
More information about the samba-cvs
mailing list