I'm new to Kerberos. I don't understand how Samba uses the system keytab (/etc/krb5.keytab) when "use kerberos keytab = true".
Does Samba use service specific tickets? What tickets does Samba add? Do I need a cron job to keep them fresh or does Winbind take care of it? Sorry if these are elementary questions, but the Samba HOWTO didn't help me understand Samba's interaction with Kerberos. My /etc/krb5.keytab looks like this: KVNO Principal ---- -------------------------------------------------------------------------- 1 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 host/[EMAIL PROTECTED] 0 [EMAIL PROTECTED] 0 [EMAIL PROTECTED] 0 [EMAIL PROTECTED] where schurter3-linux is my computer and TREMONT.LOCAL is the Active Directory Realm. The first ticket was generated on the Active Directory server using the ktpass command as per some Microsoft documentation. I use Winbind & Kerberos in PAM. Thanks, Michael Schurter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
