diff options
Diffstat (limited to 'crypto/kerberosIV/man/krb.conf.5')
| -rw-r--r-- | crypto/kerberosIV/man/krb.conf.5 | 35 |
1 files changed, 23 insertions, 12 deletions
diff --git a/crypto/kerberosIV/man/krb.conf.5 b/crypto/kerberosIV/man/krb.conf.5 index b122b9c..5c15468 100644 --- a/crypto/kerberosIV/man/krb.conf.5 +++ b/crypto/kerberosIV/man/krb.conf.5 @@ -1,4 +1,4 @@ -.\" $Id: krb.conf.5,v 1.2 1996/06/12 21:29:21 bg Exp $ +.\" $Id: krb.conf.5,v 1.3 1999/06/15 15:36:46 bg Exp $ .\" Copyright 1989 by the Massachusetts Institute of Technology. .\" .\" For copying and distribution information, @@ -9,23 +9,34 @@ /etc/krb.conf \- Kerberos configuration file .SH DESCRIPTION .I krb.conf -contains configuration information describing the Kerberos realm and the +contains configuration information describing the Kerberos realm(s) and the Kerberos key distribution center (KDC) servers for known realms. .PP .I krb.conf -contains the name of the local realm in the first -line, followed by lines indicating realm/host -entries. The first token is a realm name, and the second is the hostname -of a host running a KDC for that realm. -The words "admin server" following the hostname indicate that -the host also provides an administrative database server. +starts with a definition of the local realm on the first line, this is +followed by any number lines defining supplementary local realms. The +rest of the file consists of lines indicating realm/host entries. The +first token is a realm name, and the second is a server specification +of a host running a KDC for that realm. The words "admin server" +following the hostname indicate that the host also provides an +administrative database server. + +To be able to communicate with the KDC through a firewall it is +sometimes necessary to tunnel requests over HTTP or TCP. Tunnel +protocols and port numbers are specified in the server specification +using the syntax [(udp|tcp|http)/]hostname[:port]. + For example: .nf .in +1i -ATHENA.MIT.EDU -ATHENA.MIT.EDU kerberos-1.mit.edu admin server -ATHENA.MIT.EDU kerberos-2.mit.edu -LCS.MIT.EDU kerberos.lcs.mit.edu admin server +SICS.SE +NADA.KTH.SE +SICS.SE tcp/kerberos.sics.se:88 admin server +NADA.KTH.SE kerberos.nada.kth.se admin server +NADA.KTH.SE kerberos-1.nada.kth.se +NADA.KTH.SE kerberos-2.nada.kth.se +NADA.KTH.SE http/kerberos-3.nada.kth.se +KTH.SE kerberos.kth.se admin server .in -1i .SH SEE ALSO krb.realms(5), krb_get_krbhst(3), krb_get_lrealm(3) |
