===
Module to manage the kerberos config file
===
This module is built for use with Puppet v3 on the following OS families.
- RHEL 6
===
Default logging
- Default: FILE:/var/log/krb5libs.log
Default kdc logging
- Default: FILE:/var/log/krb5kdc.log
Default admin server logging
- Default: FILE:/var/log/kadmind.log
Default realm
- Default: undef
Boolean to use dns to lookup realm
- Default: undef
Boolean to use dns to lookup kdc
- Default: undef
Lifetime of kerberos ticket
- Default: undef
Name of keytab file
- Default: undef
Boolean if ticket is forwardable
- Default: undef
Boolean if ticket is proxiable
- Default: undef
List of kerberos domains
-
Default: undef
-
Hiera example:
krb5::realms:
'EXAMPLE.COM':
default_domain: 'example.com'
kdc:
- 'kdc1.example.com:88'
- 'kdc2.example.com:88'
admin_server:
- 'kdc1.example.com:749'
- 'kdc2.example.com:749'
List of defaults for apps
-
Default: undef
-
Hiera example:
krb5::appdefaults:
pam:
'debug': 'false'
'ticket_lifetime': '36000'
'renew_lifetime': '36000'
'forwardable': 'true'
'krb4_convert': 'false'
List of domain realms
-
Default: undef
-
Hiera example:
krb5::domain_realm: 'example.com': 'EXAMPLE.COM'
Kerberos package to install
- Default: krb5-libs
Path to config file
- Default: /etc/krb5.conf