Skip to Content
0
Former Member
Jan 18, 2012 at 08:31 PM

Windows AD, 2 servers, 1 domain - krb5.ini configuration

60 Views

Dear Sirs,

I try to enable Windows AD authentication.

I have 2 servers, but 1 domain.

Servers are dynamically switch between server1.mydom.local and server2.mydom.local.

How should I configure krb5.ini file?

In section [realms] I have info about first server, how to add second server?

[libdefaults]

default_realm = mydom.local

dns_lookup_kdc = true

dns_lookup_realm = true

default_tgs_enctypes = rc4-hmac

default_tkt_enctypes = rc4-hmac

udp_preference_limit = 1

[realms]

mydom.local = {

kdc = server1.mydom.local

default_domain = mydom.local

}

Best regards,

Michal