Kerberos Options
This section provides the following configuration options:
- Kerberos Configuration (optional) -
The name and location of the Kerberos configuration file e.g. C:\example-Kerb\krb5.ini or
/usr/local/example-kerb/krb5.conf. Sample configuration file:
[libdefaults] default_realm = $REALM-NAME$ default_tkt_enctypes = aes128-cts rc4-hmac des3-cbc-sha1 des-cbc-md5 des-cbc-crc default_tgs_enctypes = aes128-cts rc4-hmac des3-cbc-sha1 des-cbc-md5 des-cbc-crc permitted_enctypes = aes128-cts rc4-hmac des3-cbc-sha1 des-cbc-md5 des-cbc-crc [realms] $REALM-NAME$ = { kdc = $KDC-HOST$ default_domain = $DEFAULT-DOMAIN$ } [domain_realm] .$DOMAIN-REALM$ = $DOMAIN-REALM$
- JAAS Login Configuration
(optional) - The name and location of the JAAS Login configuration file e.g.
C:\exampleKerb\login.conf or /usr/local/examplekerb/login.conf. Sample configuration file:
com.sun.security.jgss.login { com.sun.security.auth.module.Krb5LoginModule required client=TRUE useTicketCache=true debug=true; }; com.sun.security.jgss.initiate { com.sun.security.auth.module.Krb5LoginModule required client=TRUE useTicketCache=true debug=true; }; com.sun.security.jgss.accept { com.sun.security.auth.module.Krb5LoginModule required client=TRUE useTicketCache=true debug=true; };