diff options
| author | Greg Hudson <ghudson@mit.edu> | 2012-07-24 16:26:27 -0400 |
|---|---|---|
| committer | Greg Hudson <ghudson@mit.edu> | 2012-07-24 16:26:27 -0400 |
| commit | fc3e8c660d98b134767c574d899528dfd29d7a16 (patch) | |
| tree | df99700e2d389a651901828e967146f4d2d2b8b6 /doc | |
| parent | 7d07dc63a22bfdebc24f0368f969acc4b76d372c (diff) | |
| download | krb5-fc3e8c660d98b134767c574d899528dfd29d7a16.tar.gz krb5-fc3e8c660d98b134767c574d899528dfd29d7a16.tar.xz krb5-fc3e8c660d98b134767c574d899528dfd29d7a16.zip | |
Add token expansion for keytab names
Make the default_keytab_name and default_client_keytab_name variables
subject to parameter expansion.
ticket: 7219 (new)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/rst_source/krb_admins/conf_files/krb5_conf.rst | 34 |
1 files changed, 31 insertions, 3 deletions
diff --git a/doc/rst_source/krb_admins/conf_files/krb5_conf.rst b/doc/rst_source/krb_admins/conf_files/krb5_conf.rst index b595a6dce8..d9c3ffbd75 100644 --- a/doc/rst_source/krb_admins/conf_files/krb5_conf.rst +++ b/doc/rst_source/krb_admins/conf_files/krb5_conf.rst @@ -136,12 +136,13 @@ The libdefaults section may contain any of the following relations: **default_client_keytab_name** This relation specifies the name of the default keytab for - obtaining client credentials. The default is |clkeytab|. + obtaining client credentials. The default is |clkeytab|. This + relation is subject to parameter expansion (see below). **default_keytab_name** This relation specifies the default keytab name to be used by - application servers such as telnetd and rlogind. The default is - |keytab|. + application servers such as sshd. The default is |keytab|. This + relation is subject to parameter expansion (see below). **default_realm** Identifies the default Kerberos realm for the client. Set its @@ -968,6 +969,33 @@ PKINIT krb5.conf options The default is false. +.. _parameter_expansion: + +Parameter expansion +------------------- + +Several variables, such as **default_keytab_name**, allow parameters +to be expanded. Valid parameters are: + + ================= =================================================== + %{TEMP} Temporary directory + %{uid} Unix real UID or Windows SID + %{euid} Unix effective user ID or Windows SID + %{USERID} Same as %{uid} + %{null} Empty string + %{LIBDIR} Installation library directory + %{BINDIR} Installation binary directory + %{SBINDIR} Installation admin binary directory + %{APPDATA} (Windows) Roaming application data for current user + %{COMMON_APPDATA} (Windows) Application data for all users + %{LOCAL_APPDATA} (Windows) Local application data for current user + %{SYSTEM} (Windows) Windows system folder + %{WINDOWS} (Windows) Windows folder + %{USERCONFIG} (Windows) Per-user MIT krb5 config file directory + %{COMMONCONFIG} (Windows) Common MIT krb5 config file directory + ================ =================================================== + + Sample krb5.conf file --------------------- |