I know. The thing is, that krb5.keytab can't go to rwtab - it would have to go to statetab (I need this file survives a reboot). Unfortunately, statetab does not seem to handle single files correctly... :(
Ondrej
-----Original Message----- From: sssd-users-bounces@lists.fedorahosted.org [mailto:sssd-users-bounces@lists.fedorahosted.org] On Behalf Of John Hodrien Sent: Thursday, April 30, 2015 11:54 AM To: End-user discussions about the System Security Services Daemon Subject: Re: [SSSD-users] net ads join & custom keytab
On Thu, 30 Apr 2015, Ondrej Valousek wrote:
Yes, I am using it heavily, but not for /etc. I need /etc to stay read-only so that it could be shared by multiple compute nodes.
You can effectively do it for single files. On CentOS you can look at rc.sysinit, and the "mount_files" function.
You'll not /etc/rwtab lists things like /etc/resolv.conf, so you don't have to hit all of /etc.
jh _______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-users
-----
The information contained in this e-mail and in any attachments is confidential and is designated solely for the attention of the intended recipient(s). If you are not an intended recipient, you must not use, disclose, copy, distribute or retain this e-mail or any part thereof. If you have received this e-mail in error, please notify the sender by return e-mail and delete all copies of this e-mail from your computer system(s). Please direct any additional queries to: communications@s3group.com. Thank You. Silicon and Software Systems Limited (S3 Group). Registered in Ireland no. 378073. Registered Office: South County Business Park, Leopardstown, Dublin 18.