It could be very convenient to have the same method for both joining machine and adding service principal names with 'realmd', everything done from Linux box. Do you have plans for that option in realmd?
Best, Longina
On Tue, 2014-06-17 at 08:45 +0000, Longina Przybyszewska wrote:
It could be very convenient to have the same method for both joining machine and adding service principal names with ‘realmd’, everything done from Linux box.
Do you have plans for that option in realmd?
Hi Longina Not sure which spns you want but the net already does that during the join. It adds the host/ and machine keys and can also prepare the keytab on the machine being joined with those keys should you so wish. HTH Steve
Nfs spn. I have to make setup for Ubuntu nfs-clients with sssd and autofs and Linux storage server (nfs4+Kerberos) for them.
So, I changed religion :) and have used 'realmd' voted as the best method for joining to AD for both, desktop client and nfs4-server.
After have joned both to AD I need nfs-spn for nfs server. I came to mess up server by using 'msktutil' for adding spn. But actually, with 'msktutil' I can create computer account compatible with Samba - wich is what 'realmd' does, isn'it? Why not make it possible in 'realmd' ?
I hate run commands on Win server, and hate to ask Win admins to do it for me. Best, Longina
-----Original Message----- From: sssd-users-bounces@lists.fedorahosted.org [mailto:sssd-users-bounces@lists.fedorahosted.org] On Behalf Of steve Sent: 17. juni 2014 12:36 To: sssd-users@lists.fedorahosted.org Subject: Re: [SSSD-users] sssd + realm + SPN
On Tue, 2014-06-17 at 08:45 +0000, Longina Przybyszewska wrote:
It could be very convenient to have the same method for both joining machine and adding service principal names with ‘realmd’, everything done from Linux box.
Do you have plans for that option in realmd?
Hi Longina Not sure which spns you want but the net already does that during the join. It adds the host/ and machine keys and can also prepare the keytab on the machine being joined with those keys should you so wish. HTH Steve
_______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-users
On (17/06/14 12:19), Longina Przybyszewska wrote:
Nfs spn. I have to make setup for Ubuntu nfs-clients with sssd and autofs and Linux storage server (nfs4+Kerberos) for them.
So, I changed religion :) and have used 'realmd' voted as the best method for joining to AD for both, desktop client and nfs4-server.
After have joned both to AD I need nfs-spn for nfs server. I came to mess up server by using 'msktutil' for adding spn. But actually, with 'msktutil' I can create computer account compatible with Samba - wich is what 'realmd' does, isn'it? Why not make it possible in 'realmd' ?
I hate run commands on Win server, and hate to ask Win admins to do it for me. Best, Longina
Feel free to file a bug for realmd https://bugs.freedesktop.org/enter_bug.cgi?product=realmd
http://www.freedesktop.org/software/realmd/
LS
I send that bug for realmd as you suggested. In mean time - is the setspn.exe the best solution for setting SPN for server?
Best, Longina
-----Original Message----- From: sssd-users-bounces@lists.fedorahosted.org [mailto:sssd-users-bounces@lists.fedorahosted.org] On Behalf Of Lukas Slebodnik Sent: 17. juni 2014 14:58 To: End-user discussions about the System Security Services Daemon Subject: Re: [SSSD-users] sssd + realm + SPN
On (17/06/14 12:19), Longina Przybyszewska wrote:
Nfs spn. I have to make setup for Ubuntu nfs-clients with sssd and autofs and Linux storage server (nfs4+Kerberos) for them.
So, I changed religion :) and have used 'realmd' voted as the best method for joining to AD for both, desktop client and nfs4-server.
After have joned both to AD I need nfs-spn for nfs server. I came to mess up server by using 'msktutil' for adding spn. But actually, with 'msktutil' I can create computer account compatible with Samba - wich is what 'realmd' does, isn'it? Why not make it possible in 'realmd' ?
I hate run commands on Win server, and hate to ask Win admins to do it for me. Best, Longina
Feel free to file a bug for realmd https://bugs.freedesktop.org/enter_bug.cgi?product=realmd
http://www.freedesktop.org/software/realmd/
LS _______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-users
sssd-users@lists.fedorahosted.org