diff options
| author | Nalin Dahyabhai <nalin@fedoraproject.org> | 2008-04-04 21:29:53 +0000 |
|---|---|---|
| committer | Nalin Dahyabhai <nalin@fedoraproject.org> | 2008-04-04 21:29:53 +0000 |
| commit | af9bedd61a8d94435c920b4c9dacc9acdc9fb660 (patch) | |
| tree | 4065e5e74f89d0ee7a8452edf1a683ea9d71143c /kadmind.init | |
| parent | f56b6ee2db92b22d3db9ce531134a97552f3cbfa (diff) | |
| download | krb5-af9bedd61a8d94435c920b4c9dacc9acdc9fb660.tar.gz krb5-af9bedd61a8d94435c920b4c9dacc9acdc9fb660.tar.xz krb5-af9bedd61a8d94435c920b4c9dacc9acdc9fb660.zip | |
- stop exporting kadmin keys to a keytab file when kadmind starts -- the
daemon's been able to use the database directly for a long long time
now
- belatedly add aes128,aes256 to the default set of supported key types
Diffstat (limited to 'kadmind.init')
| -rwxr-xr-x | kadmind.init | 10 |
1 files changed, 1 insertions, 9 deletions
diff --git a/kadmind.init b/kadmind.init index 5e97a91..d4b4949 100755 --- a/kadmind.init +++ b/kadmind.init @@ -38,15 +38,7 @@ start() { echo $"Error. This appears to be a slave server, found kpropd.acl" exit 6 else - [ -x $kadmind ] || exit 5 - if [ ! -f /var/kerberos/krb5kdc/kadm5.keytab ] ; then - echo -n $"Extracting kadm5 Service Keys: " - # This should always work. - /usr/kerberos/sbin/kadmin.local ${KRB5REALM:+-r $KRB5REALM} -q "ktadd -k /var/kerberos/krb5kdc/kadm5.keytab kadmin/admin${KRB5REALM:+@$KRB5REALM} kadmin/changepw${KRB5REALM:+@$KRB5REALM}" && success || failure - # It's probably okay if this fails. - /usr/kerberos/sbin/kadmin.local ${KRB5REALM:+-r $KRB5REALM} -q "ktadd -k /var/kerberos/krb5kdc/kadm5.keytab kadmin/`hostname`${KRB5REALM:+@$KRB5REALM}" 2> /dev/null && success - echo - fi + [ -x $kadmind ] || exit 5 fi echo -n $"Starting $prog: " daemon ${kadmind} ${KRB5REALM:+-r ${KRB5REALM}} $KADMIND_ARGS |