[Samba] question : dns.keytab and named.conf.update
Andrew Bartlett
abartlet at samba.org
Tue Mar 11 02:13:21 MDT 2014
On Mon, 2014-03-10 at 11:08 +0100, L.P.H. van Belle wrote:
> Hai,
>
> Just a question .
> Why are the Principals in the dns.keytab different from what is in the named.conf.update file.
The dns.keytab entries are the DNS server accounts, while the
named.conf.update principals are the clients permitted to make
unrestricted DNS changes.
In the default bind9_dlz configuration, the named.conf.update is
overridden by the internal ACL processing in the DLZ module
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba
mailing list