source-git / krb5

Clone
Source Code
GIT

Blame doc/html/mitK5defaults.html

c8 c8s master
  1.   84e616108e805ff803dca4aabd5967e5fe6b0c2c
  2.   doc
  3.   html
  4.   mitK5defaults.html
Blob History Raw
Packit fd8b60
Packit fd8b60
Packit fd8b60 
  "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
Packit fd8b60
Packit fd8b60 
<html xmlns="http://www.w3.org/1999/xhtml">
Packit fd8b60 
  <head>
Packit fd8b60 
    <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
Packit fd8b60 
    <title>MIT Kerberos defaults — MIT Kerberos Documentation</title>
Packit fd8b60 
    <link rel="stylesheet" href="_static/agogo.css" type="text/css" />
Packit fd8b60 
    <link rel="stylesheet" href="_static/pygments.css" type="text/css" />
Packit fd8b60 
    <link rel="stylesheet" href="_static/kerb.css" type="text/css" />
Packit fd8b60 
    <script type="text/javascript">
Packit fd8b60 
      var DOCUMENTATION_OPTIONS = {
Packit fd8b60 
        URL_ROOT:    './',
Packit fd8b60 
        VERSION:     '1.18.2',
Packit fd8b60 
        COLLAPSE_INDEX: false,
Packit fd8b60 
        FILE_SUFFIX: '.html',
Packit fd8b60 
        HAS_SOURCE:  true,
Packit fd8b60 
        SOURCELINK_SUFFIX: '.txt'
Packit fd8b60 
      };
Packit fd8b60 
    </script>
Packit fd8b60 
    <script type="text/javascript" src="_static/jquery.js"></script>
Packit fd8b60 
    <script type="text/javascript" src="_static/underscore.js"></script>
Packit fd8b60 
    <script type="text/javascript" src="_static/doctools.js"></script>
Packit fd8b60 
    <link rel="author" title="About these documents" href="about.html" />
Packit fd8b60 
    <link rel="index" title="Index" href="genindex.html" />
Packit fd8b60 
    <link rel="search" title="Search" href="search.html" />
Packit fd8b60 
    <link rel="copyright" title="Copyright" href="copyright.html" />
Packit fd8b60 
    <link rel="next" title="Environment variables" href="admin/env_variables.html" />
Packit fd8b60 
    <link rel="prev" title="sserver" href="admin/admin_commands/sserver.html" />
Packit fd8b60 
  </head>
Packit fd8b60 
  <body>
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
            
MIT Kerberos Documentation
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
            accesskey="C">Contents |
Packit fd8b60
Packit fd8b60 
            accesskey="P">previous |
Packit fd8b60
Packit fd8b60 
            accesskey="N">next |
Packit fd8b60
Packit fd8b60 
            accesskey="I">index |
Packit fd8b60
Packit fd8b60 
            accesskey="S">Search |
Packit fd8b60 
    feedback
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
MIT Kerberos defaults
Packit fd8b60
Packit fd8b60 
General defaults
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
Description
Packit fd8b60 
Default
Packit fd8b60 
Environment
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
keytab file
Packit fd8b60 
DEFKTNAME
Packit fd8b60 
KRB5_KTNAME
Packit fd8b60
Packit fd8b60 
Client keytab file
Packit fd8b60 
DEFCKTNAME
Packit fd8b60 
KRB5_CLIENT_KTNAME
Packit fd8b60
Packit fd8b60 
Kerberos config file krb5.conf
Packit fd8b60 
/etc/krb5.conf:SYSCONFDIR/krb5.conf
Packit fd8b60 
KRB5_CONFIG
Packit fd8b60
Packit fd8b60 
KDC config file kdc.conf
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/kdc.conf
Packit fd8b60 
KRB5_KDC_PROFILE
Packit fd8b60
Packit fd8b60 
GSS mechanism config file
Packit fd8b60 
SYSCONFDIR/gss/mech
Packit fd8b60 
GSS_MECH_CONFIG
Packit fd8b60
Packit fd8b60 
KDC database path (DB2)
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/principal
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Master key stash file
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/.k5.realm
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Admin server ACL file kadm5.acl
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/kadm5.acl
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
OTP socket directory
Packit fd8b60 
RUNSTATEDIR/krb5kdc
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Plugin base directory
Packit fd8b60 
LIBDIR/krb5/plugins
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
replay cache directory
Packit fd8b60 
/var/tmp
Packit fd8b60 
KRB5RCACHEDIR
Packit fd8b60
Packit fd8b60 
Master key default enctype
Packit fd8b60 
aes256-cts-hmac-sha1-96
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Default keysalt list
Packit fd8b60 
aes256-cts-hmac-sha1-96:normal aes128-cts-hmac-sha1-96:normal
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Permitted enctypes
Packit fd8b60 
aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96 aes256-cts-hmac-sha384-192 aes128-cts-hmac-sha256-128 des3-cbc-sha1 arcfour-hmac-md5 camellia256-cts-cmac camellia128-cts-cmac
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
KDC default port
Packit fd8b60 
88
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Admin server port
Packit fd8b60 
749
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
Password change port
Packit fd8b60 
464
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
Replica KDC propagation defaults
Packit fd8b60 
This table shows defaults used by the kprop and
Packit fd8b60 
kpropd programs.
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
Description
Packit fd8b60 
Default
Packit fd8b60 
Environment
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
kprop database dump file
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/replica_datatrans
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
kpropd temporary dump file
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/from_master
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
kdb5_util location
Packit fd8b60 
SBINDIR/kdb5_util
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
kprop location
Packit fd8b60 
SBINDIR/kprop
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
kpropd ACL file
Packit fd8b60 
LOCALSTATEDIR/krb5kdc/kpropd.acl
Packit fd8b60 
 
Packit fd8b60
Packit fd8b60 
kprop port
Packit fd8b60 
754
Packit fd8b60 
KPROP_PORT
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
Default paths for Unix-like systems
Packit fd8b60 
On Unix-like systems, some paths used by MIT krb5 depend on parameters
Packit fd8b60 
chosen at build time.  For a custom build, these paths default to
Packit fd8b60 
subdirectories of /usr/local.  When MIT krb5 is integrated into an
Packit fd8b60 
operating system, the paths are generally chosen to match the
Packit fd8b60 
operating system’s filesystem layout.
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
Description
Packit fd8b60 
Symbolic name
Packit fd8b60 
Custom build path
Packit fd8b60 
Typical OS path
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
User programs
Packit fd8b60 
BINDIR
Packit fd8b60 
/usr/local/bin
Packit fd8b60 
/usr/bin
Packit fd8b60
Packit fd8b60 
Libraries and plugins
Packit fd8b60 
LIBDIR
Packit fd8b60 
/usr/local/lib
Packit fd8b60 
/usr/lib
Packit fd8b60
Packit fd8b60 
Parent of KDC state dir
Packit fd8b60 
LOCALSTATEDIR
Packit fd8b60 
/usr/local/var
Packit fd8b60 
/var
Packit fd8b60
Packit fd8b60 
Parent of KDC runtime dir
Packit fd8b60 
RUNSTATEDIR
Packit fd8b60 
/usr/local/var/run
Packit fd8b60 
/run
Packit fd8b60
Packit fd8b60 
Administrative programs
Packit fd8b60 
SBINDIR
Packit fd8b60 
/usr/local/sbin
Packit fd8b60 
/usr/sbin
Packit fd8b60
Packit fd8b60 
Alternate krb5.conf dir
Packit fd8b60 
SYSCONFDIR
Packit fd8b60 
/usr/local/etc
Packit fd8b60 
/etc
Packit fd8b60
Packit fd8b60 
Default ccache name
Packit fd8b60 
DEFCCNAME
Packit fd8b60 
FILE:/tmp/krb5cc_%{uid}
Packit fd8b60 
FILE:/tmp/krb5cc_%{uid}
Packit fd8b60
Packit fd8b60 
Default keytab name
Packit fd8b60 
DEFKTNAME
Packit fd8b60 
FILE:/etc/krb5.keytab
Packit fd8b60 
FILE:/etc/krb5.keytab
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
The default client keytab name (DEFCKTNAME) typically defaults to
Packit fd8b60 
FILE:/usr/local/var/krb5/user/%{euid}/client.keytab for a custom
Packit fd8b60 
build.  A native build will typically use a path which will vary
Packit fd8b60 
according to the operating system’s layout of /var.
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60
Packit fd8b60 
    
On this page
Packit fd8b60
    Packit fd8b60 
  • MIT Kerberos defaults
      		•
      Packit fd8b60 
    • General defaults
      		•
      Packit fd8b60 
    • Replica KDC propagation defaults
      		•
      Packit fd8b60 
    • Default paths for Unix-like systems
      		•
      Packit fd8b60
      Packit fd8b60
      Packit fd8b60
      Packit fd8b60
      Packit fd8b60
      Packit fd8b60 
          
      Table of contents
      Packit fd8b60
        Packit fd8b60 
      • For users
        		•
        Packit fd8b60 
      • For administrators
          		•
          Packit fd8b60 
        • Installation guide
          		•
          Packit fd8b60 
        • Configuration Files
          		•
          Packit fd8b60 
        • Realm configuration decisions
          		•
          Packit fd8b60 
        • Database administration
          		•
          Packit fd8b60 
        • Database types
          		•
          Packit fd8b60 
        • Account lockout
          		•
          Packit fd8b60 
        • Configuring Kerberos with OpenLDAP back-end
          		•
          Packit fd8b60 
        • Application servers
          		•
          Packit fd8b60 
        • Host configuration
          		•
          Packit fd8b60 
        • Backups of secure hosts
          		•
          Packit fd8b60 
        • PKINIT configuration
          		•
          Packit fd8b60 
        • OTP Preauthentication
          		•
          Packit fd8b60 
        • SPAKE Preauthentication
          		•
          Packit fd8b60 
        • Addressing dictionary attack risks
          		•
          Packit fd8b60 
        • Principal names and DNS
          		•
          Packit fd8b60 
        • Encryption types
          		•
          Packit fd8b60 
        • HTTPS proxy configuration
          		•
          Packit fd8b60 
        • Authentication indicators
          		•
          Packit fd8b60 
        • Administration  programs
          		•
          Packit fd8b60 
        • MIT Kerberos defaults
          		•
          Packit fd8b60 
        • Environment variables
          		•
          Packit fd8b60 
        • Troubleshooting
          		•
          Packit fd8b60 
        • Advanced topics
          		•
          Packit fd8b60 
        • Various links
          		•
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60 
        • For application developers
          		•
          Packit fd8b60 
        • For plugin module developers
          		•
          Packit fd8b60 
        • Building Kerberos V5
          		•
          Packit fd8b60 
        • Kerberos V5 concepts
          		•
          Packit fd8b60 
        • Protocols and file formats
          		•
          Packit fd8b60 
        • MIT Kerberos features
          		•
          Packit fd8b60 
        • How to build this documentation from the source
          		•
          Packit fd8b60 
        • Contributing to the MIT Kerberos Documentation
          		•
          Packit fd8b60 
        • Resources
          		•
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60 
              
          Full Table of Contents
          Packit fd8b60 
              
          Search
          Packit fd8b60 
              <form class="search" action="search.html" method="get">
          Packit fd8b60 
                <input type="text" name="q" size="18" />
          Packit fd8b60 
                <input type="submit" value="Go" />
          Packit fd8b60 
                <input type="hidden" name="check_keywords" value="yes" />
          Packit fd8b60 
                <input type="hidden" name="area" value="default" />
          Packit fd8b60 
              </form>
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60 
                      
          Release: 1.18.2
          Packit fd8b60 
                          © Copyright 1985-2020, MIT.
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60 
                      >Contents |
          Packit fd8b60
          Packit fd8b60 
                      >previous |
          Packit fd8b60
          Packit fd8b60 
                      >next |
          Packit fd8b60
          Packit fd8b60 
                      >index |
          Packit fd8b60
          Packit fd8b60 
                      >Search |
          Packit fd8b60 
              feedback
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60
          Packit fd8b60 
            </body>
          Packit fd8b60 
          </html>

          Powered by Pagure 5.14.1

          SSH Hostkey/Fingerprint | Documentation