[dbdefaults]
	ldap_kerberos_container_dn = cn=Manager,dc=example,dc=com
	database_module = openldap_ldapconf
[dbmodules]
	openldap_ldapconf = {
		db_library = kldap
		ldap_kerberos_container_dn = cn=Manager,dc=example,dc=com
		ldap_kdc_dn = "cn=Manager,dc=example,dc=com"
		ldap_kadmind_dn = "cn=Manager,dc=example,dc=com"
		ldap_service_password_file = /usr/local/var/krb5kdc/service.keyfile
		ldap_servers = ldap://localhost:389
		ldap_conns_per_server = 5
	}
[libdefaults]
	ticket_lifetime = 600
	default_realm = EXAMPLE.COM
	default_tgs_enctypes = des-cbc-md5
	dafault_tkt_enctypes = des-cbc-md5
	allow_weak_crypto = true
[realms]
	EXAMPLE.COM = {
			admin_server =  localhost:8886
			kdc =  localhost:8888
			default_domain = example.com
			database_module = openldap_ldapconf
	}
[domain_realm]
        .example.com = EXAMPLE.COM
         example.com = EXAMPLE.COM
[logging]
    	kdc = FILE:/ngs/app/kdcd/apple_kdc/log/kdc.log
        admin_server = FILE:/ngs/app/kdcd/apple_kdc/log/kadmin.log
        default = FILE:/ngs/app/kdcd/apple_kdc/log/krb5lib.log