diff options
| author | Simo Sorce <idra@samba.org> | 2007-08-24 13:21:43 +0000 |
|---|---|---|
| committer | Gerald (Jerry) Carter <jerry@samba.org> | 2007-10-10 15:02:32 -0500 |
| commit | 61582b5d8a7d718e201bdeaa1d9d991bd1e4a133 (patch) | |
| tree | 959b5a0912516174a4491c14e5e8eb696d98cf7a /source4 | |
| parent | b7a1bb0174f5d76368e520aa99f80a13be7b35a3 (diff) | |
| download | samba-61582b5d8a7d718e201bdeaa1d9d991bd1e4a133.tar.gz samba-61582b5d8a7d718e201bdeaa1d9d991bd1e4a133.tar.bz2 samba-61582b5d8a7d718e201bdeaa1d9d991bd1e4a133.zip | |
r24650: Some more instructions to have make GSS-TSIG work
(This used to be commit 98350b35ab0b0f06cc9ddf8edaf3dfe705c3e5bf)
Diffstat (limited to 'source4')
| -rw-r--r-- | source4/setup/named.conf | 14 |
1 files changed, 13 insertions, 1 deletions
diff --git a/source4/setup/named.conf b/source4/setup/named.conf index 56bb3e0f35..eb5098ae3c 100644 --- a/source4/setup/named.conf +++ b/source4/setup/named.conf @@ -1,10 +1,22 @@ # -# Insert this snippit into your named.conf or bind.conf to configure +# Insert these snippets into your named.conf or bind.conf to configure # the BIND nameserver. # +#insert this into options {} +tkey-gssapi-credential "DNS/${DNSDOMAIN}" +tkey-domain "${REALM}"; + +#the zone file zone "${DNSDOMAIN}." IN { type master; file "${DNSDOMAIN}.zone"; }; +# Also, you need to change your init scripts to set this environment variable +# for named: KRB_KTNAME so that it points to the keytab generated. +# In RedHat derived systems such RHEL/CentOS/Fedora you can add the following +# line to the /etc/sysconfig/named file +# export KRB_KTNAME=/etc/named.keytab + +# *TODO*: generate and install a keytab file in /etc/named.keytab |