[OpenAFS] service principal question
Neulinger, Nathan
nneul@umr.edu
Wed, 12 Oct 2005 12:50:30 -0500
You just need to remember to update kadm5.acl if you decide to use a
different name (assuming you're using mit k5), as the default install of
that I believe gives krb db admin rights for all princs to */admin.=20
------------------------------------------------------------
Nathan Neulinger EMail: nneul@umr.edu
University of Missouri - Rolla Phone: (573) 341-6679
UMR Information Technology Fax: (573) 341-4216
=20
> -----Original Message-----
> From: openafs-info-admin@openafs.org=20
> [mailto:openafs-info-admin@openafs.org] On Behalf Of Russ Allbery
> Sent: Wednesday, October 12, 2005 12:30 PM
> To: openafs-info@openafs.org
> Subject: Re: [OpenAFS] service principal question
>=20
> Jiann-Ming Su <sujiannming@gmail.com> writes:
>=20
> > So the principal for the cell admin user should be
> > "some_user/admin@THIS.IS.YOUR.REALM.COM" for the same=20
> reason? Or, can
> > the admin user be "some_user@THIS.IS.YOUR.REALM.COM"?
>=20
> This one doesn't matter; you can call the admin principal anything you
> want. The /admin bit is just a convention.
>=20
> --=20
> Russ Allbery (rra@stanford.edu) =20
> <http://www.eyrie.org/~eagle/>
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>=20
>=20