1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-23 17:34:34 +03:00
samba-mirror/source4/setup
Alexander Bokovoy 5a08499414 samba-tool: create working private krb5.conf
DNS update tool uses private krb5.conf which should have enough details
to authenticate with GSS-TSIG when running nsupdate.

Unfortunately, the configuration we provide is not enough. We set
defaults to not lookup REALM via DNS but at the same time we don't
provide any realm definition. As result, MIT Kerberos cannot actually
find a working realm for Samba AD deployment because it cannot query DNS
for a realm discovery or pick it up from the configuration.

Extend private krb5.conf with a realm definition that will allow MIT
Kerberos to look up KDC over DNS.

Signed-off-by: Alexander Bokovoy <ab@samba.org>
Reviewed-by: Andreas Schneider <asn@samba.org>
2019-10-08 12:50:38 +00:00
..
ad-schema schema: 2008R2 AD schema attributes and classes 2017-12-14 08:20:17 +01:00
adprep WindowsServerDocs: Update README for clarity 2017-12-20 23:13:11 +01:00
display-specifiers
tests sefltest: Remove tests for obsolete OpenLDAP backend 2019-08-30 08:32:30 +00:00
aggregate_schema.ldif
cn=samba.ldif
DB_CONFIG
dns_update_list s4:setup: register ${NTDSGUID}._msdcs.${DNSFOREST} first in dns_update_list 2019-02-14 02:18:28 +01:00
extended-rights.ldif provision: use ASCII quotes 2019-04-03 10:11:49 +00:00
fedorads-index.ldif
fedorads-linked-attributes.ldif
fedorads-pam.ldif
fedorads-samba.ldif
fedorads-sasl.ldif
idmap_init.ldif
krb5.conf samba-tool: create working private krb5.conf 2019-10-08 12:50:38 +00:00
memberof.conf
mmr_serverids.conf
mmr_syncrepl.conf
modules.conf
named.conf
named.conf.dlz provision: Add support for BIND 9.12.x 2018-08-10 05:36:19 +02:00
named.conf.update
named.txt provision: Suggest "minimal-responses yes;" by default 2019-06-21 00:52:19 +00:00
olc_mmr.conf
olc_seed.ldif
olc_serverid.conf
olc_syncrepl_seed.conf
olc_syncrepl.conf
prefixMap.txt
provision_basedn_modify.ldif samba-tool: validate password early in domain provision 2017-12-10 00:47:30 +01:00
provision_basedn_options.ldif
provision_basedn_references.ldif 2008R2: Missing operation (75, 76) for ActiveDirectoryUpdate version 5 (FL) 2017-12-20 23:13:11 +01:00
provision_basedn.ldif
provision_computers_add.ldif
provision_computers_modify.ldif
provision_configuration_basedn.ldif
provision_configuration_modify.ldif schema: Re-work extended rights handling in provision (prep for 2012R2) 2017-12-14 08:20:16 +01:00
provision_configuration_references.ldif
provision_configuration.ldif provision: RODC revision level should be at 2 2017-12-14 08:20:17 +01:00
provision_dns_accounts_add.ldif
provision_dns_add_samba.ldif
provision_dnszones_add.ldif
provision_dnszones_modify.ldif
provision_dnszones_partitions.ldif
provision_group_policy.ldif
provision_init.ldif provision: Changes to support encrypted_secrets module 2017-12-18 00:10:17 +01:00
provision_partitions.ldif provision: allow provisioning of a different database backend 2018-04-06 02:08:45 +02:00
provision_privilege.ldif
provision_rootdse_add.ldif ad/provision: change http://samba.org to https://www.samba.org 2016-12-09 16:57:31 +01:00
provision_rootdse_modify.ldif
provision_schema_basedn_modify.ldif schema: Add option of specifying the base schema for a provision 2017-12-14 08:20:16 +01:00
provision_schema_basedn.ldif
provision_self_join_config.ldif
provision_self_join_modify_config.ldif s4:provision: split out provision_self_join_modify_schema.ldif 2019-04-11 04:17:10 +00:00
provision_self_join_modify_schema.ldif s4:provision: split out provision_self_join_modify_schema.ldif 2019-04-11 04:17:10 +00:00
provision_self_join_modify.ldif
provision_self_join.ldif
provision_users_add.ldif
provision_users_modify.ldif
provision_users.ldif typo: Change case to match DN 2017-12-14 08:20:14 +01:00
provision_well_known_sec_princ.ldif
provision.ldif 2008R2: Missing operation (77) for ActiveDirectoryUpdate version 5 (FL) 2017-12-20 23:13:11 +01:00
provision.reg
provision.zone
refint.conf
schema_samba4.ldif repl: test for schema object and LA repl across chunks 2019-04-11 04:17:11 +00:00
schema-map-fedora-ds-1.0
schema-map-openldap-2.3
secrets_dns.ldif
secrets_init.ldif
secrets_sasl_ldap.ldif
secrets_simple_ldap.ldif
secrets.ldif
share.ldif
spn_update_list
wscript_build Forest-Wide-Updates.md: Include the description of forest wide updates 2017-12-20 23:13:11 +01:00
ypServ30.ldif