[jira] [Updated] (DIRKRB-752) HAS server need to check the content of admin.keytab when init

Wed, 25 Nov 2020 18:50:04 -0800 


     [ 
https://issues.apache.org/jira/browse/DIRKRB-752?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Jiayi Liu updated DIRKRB-752:
-----------------------------
    Description: 
Currently, if the admin.keytab file already exists, HAS server will not re-init 
to generate admin.keytab and send to HAS init tool. When the kadmin principal 
in the admin.keytab file is wrong, we should regenerate the admin.keytab file.
We need to consider the following,

1. When the admin.keytab already exists and the content is correct, we only 
need to return the file directly.
2. When admin.keytab exists, but the content is wrong, we need to delete it, 
and then continue the subsequent init process.
3. When admin.keytab does not exist, continue the subsequent init process.

  was:Currently, if the admin.keytab file already exists, HAS will not re-init 
to generate admin.keytab. When the kadmin principal in the admin.keytab file is 
wrong, we should regenerate the admin.keytab file.


> HAS server need to check the content of admin.keytab when init
> --------------------------------------------------------------
>
>                 Key: DIRKRB-752
>                 URL: https://issues.apache.org/jira/browse/DIRKRB-752
>             Project: Directory Kerberos
>          Issue Type: Improvement
>          Components: has-project
>            Reporter: Jiayi Liu
>            Assignee: Jiayi Liu
>            Priority: Major
>
> Currently, if the admin.keytab file already exists, HAS server will not 
> re-init to generate admin.keytab and send to HAS init tool. When the kadmin 
> principal in the admin.keytab file is wrong, we should regenerate the 
> admin.keytab file.
> We need to consider the following,
> 1. When the admin.keytab already exists and the content is correct, we only 
> need to return the file directly.
> 2. When admin.keytab exists, but the content is wrong, we need to delete it, 
> and then continue the subsequent init process.
> 3. When admin.keytab does not exist, continue the subsequent init process.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to