[PATCHSET] add support for DIR: based credential caches
Andreas Schneider
asn at redhat.com
Tue Jul 23 00:50:17 MDT 2013
On Monday 22 July 2013 12:57:00 Jeremy Allison wrote:
> On Mon, Jul 22, 2013 at 02:03:44PM +0200, Guenther Deschner wrote:
> > Hi,
> >
> > attached find some patches to add support for DIR: based krb5 credential
> > caches in kerberized pam_winbind logons. The pam_winbind.conf
> > configuration file now also allows to define custom patterns for DIR:
> > and FILE: paths including numeric uid substitution using "%u".
>
> This:
> > + if (strequal(type, "DIR")) {
> > + gen_cc = talloc_asprintf(
> > + mem_ctx, "DIR:/run/user/%d/krb5cc", uid);
> > + }
>
> Looks rather Linux-only'ish :-).
>
> Is there an alternative/parameterization for other systems ?
This is the default from krb5. If you prefer another path, then set it with:
krb5_cc_type = DIR:/path/to/%u/krb5cc
-- andreas
--
Andreas Schneider GPG-ID: 8B7EB4B8
Red Hat asn at redhat.com
Samba Team asn at samba.org
More information about the samba-technical
mailing list