summaryrefslogtreecommitdiffstats
path: root/src/man/kdc.conf.man
diff options
context:
space:
mode:
Diffstat (limited to 'src/man/kdc.conf.man')
-rw-r--r--src/man/kdc.conf.man12
1 files changed, 6 insertions, 6 deletions
diff --git a/src/man/kdc.conf.man b/src/man/kdc.conf.man
index faccb43397..af5e229785 100644
--- a/src/man/kdc.conf.man
+++ b/src/man/kdc.conf.man
@@ -261,7 +261,7 @@ slave configuration files.
(Delta time string.) Specifies the amount of time to wait for a
full propagation to complete. This is optional in configuration
files, and is used by slave KDCs only. The default value is 5
-minutes (\fB5m\fP).
+minutes (\fB5m\fP). New in release 1.11.
.TP
.B \fBiprop_logfile\fP
(File name.) Specifies where the update log file for the realm
@@ -332,7 +332,7 @@ disable referral processing altogether.
principals support des\-cbc\-crc for session key enctype negotiation
purposes. If \fBallow_weak_crypto\fP in \fIlibdefaults\fP is
false, or if des\-cbc\-crc is not a permitted enctype, then this
-variable has no effect. Defaults to true.
+variable has no effect. Defaults to true. New in release 1.11.
.TP
.B \fBreject_bad_transit\fP
(Boolean value.) If set to true, the KDC will check the list of
@@ -361,7 +361,7 @@ requests from anonymous principals to service principals other
than the realm\(aqs ticket\-granting service. This option allows
anonymous PKINIT to be enabled for use as FAST armor tickets
without allowing anonymous authentication to services. The
-default value is false.
+default value is false. New in release 1.9.
.TP
.B \fBsupported_enctypes\fP
(List of \fIkey\fP:\fIsalt\fP strings.) Specifies the default key/salt
@@ -424,14 +424,14 @@ authentication" field of principal entries requiring
preauthentication. Setting this flag may improve performance.
(Principal entries which do not require preauthentication never
update the "Last successful authentication" field.). First
-introduced in version 1.9.
+introduced in release 1.9.
.TP
.B \fBdisable_lockout\fP
If set to \fBtrue\fP, suppresses KDC updates to the "Last failed
authentication" and "Failed password attempts" fields of principal
entries requiring preauthentication. Setting this flag may
improve performance, but also disables account lockout. First
-introduced in version 1.9.
+introduced in release 1.9.
.TP
.B \fBldap_conns_per_server\fP
This LDAP\-specific tag indicates the number of connections to be
@@ -904,6 +904,6 @@ Here\(aqs an example of a kdc.conf file:
.SH AUTHOR
MIT
.SH COPYRIGHT
-2012, MIT
+1985-2013, MIT
.\" Generated by docutils manpage writer.
.
generated by cgit (git 2.34.1) at 2024-05-22 08:14:25 +0000