On Sat, 2004-05-01 at 04:29, Bob Rasey wrote: > Hi Mark, > > On Fri, Apr 30, 2004 at 07:40:52PM +0200, Mark Proehl wrote: > > > > I read your mini howto. You suggest to delete /etc/krb5.keytab. But this file > > is needed by other kerberized services on the unix server, eg. sshd. > > > > Is it possible to use the same keytab file for samba and the other services? > > > > What happens to other kerberized services if samba changes the server key? > > I'm no Samba expert, but my understanding of how I've set this system > up is that authentication on the Linux side happens via Winbind, and > Winbind uses the keytab generated by Samba when you "net ads join". > The end of chapter 21 in the official Samba HOW-TO discusses > leveraging Winbind for authenticating services other than Samba.
Patches are being proposed on the samba-technical list to allow Samba to work with and update the system keytab. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net
signature.asc
Description: This is a digitally signed message part
-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba