On Sun, 07 Jan 2007 09:43:35 -0500 [EMAIL PROTECTED] wrote: > When I created a user inside of kadmin for Debian-bind, I got the > following error. Is this a cause for concern? > > WARNING: no policy specified for [EMAIL PROTECTED]; defaulting to no > policy > > Justin
No, it's all good. > > > Davor Ocelic wrote: > > On Sat, 06 Jan 2007 23:42:15 -0500 > > Michael Olson <[EMAIL PROTECTED]> wrote: > > > > > >> Davor Ocelic <[EMAIL PROTECTED]> writes: > >> > >> > >>> Since most of our services run under different users, we should create > >>> /etc/<srvname>.keytab for each service and chown/chgrp it properly. > >>> The creation of the keytab file is done within kadmin; here's an example > >>> for user "domtool" (which I've added already): > >>> > >>> $ kadmin -k -p root/admin > >>> : ktadd -k /etc/domtool.keytab domtool > >>> : quit > >>> > >>> $ kinit -k -t /etc/domtool.keytab domtool > >>> $ sudo -u domtool klist > >>> > >> I've tried to do this for exim4, as follows. > >> > >> sudo kadmin -k -p root/admin > >> kadmin: ktadd -k /etc/exim4.keytab Debian-exim > >> kadmin: Principal Debian-exim does not exist. > >> > >> Am I missing a step here? > >> > > > > Kind of, yes. System users are not in kerberos, so you need to add > > them, like this (inside kadmin): > > > > addprinc -randkey Debian-exim > > > > then continue as usual.. > > > > _______________________________________________ > > HCoop-SysAdmin mailing list > > [email protected] > > http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin > > > > > _______________________________________________ > HCoop-SysAdmin mailing list > [email protected] > http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin > _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
