William Muriithi via FreeIPA-users wrote:
> Hi Wouter,
>
> On 11 August 2017 at 15:14, wrote:
>> I've used shared keytabs before to create a loadbalanced squid instance.
>> This way you don't even need to use sticky balancing since all nodes that
>> have the key material will be able to decrypt
Hi Wouter,
On 11 August 2017 at 15:14, wrote:
> I've used shared keytabs before to create a loadbalanced squid instance.
> This way you don't even need to use sticky balancing since all nodes that
> have the key material will be able to decrypt TGSs for the shared service.
> Be sure to use the
Yup, we do it on several of our web servers...It's actually really cut
and dry, that last section of that page you referenced is accurate and
it's dead simple.
On 08/11/2017 03:01 PM, William Muriithi via FreeIPA-users wrote:
Afternoon,
I am attempting to add redundancy to a system that we ar
I've used shared keytabs before to create a loadbalanced squid instance. This
way you don't even need to use sticky balancing since all nodes that have the
key material will be able to decrypt TGSs for the shared service. Be sure to
use the -r option with ipa-getkeytab, otherwise the secret will