Propagating the Kerberos Server
Propagation ToolsPropagation ToolsThe kpropd daemon manages and performs propagation of the principal database on each server in the propagation hierarchy. It uses the following local files:
| • | prop_q |
|
|
| A default propagation input queue file that contains the names of | |
|
| every principal whose record has changed since the last successful | |
|
| database propagation. |
|
| • | prop_q.wrk |
|
|
| A temporary working copy of prop_q, the default propagation input | |
|
| queue file. |
|
| • | prop_hostname |
|
|
| An ASCII cache file created on the propagating security server when | |
|
| the host name of the security server is unavailable during the | |
|
| principal database propagation cycle. The file contains principal | |
|
| records that were not propagated from the prop_q file to the | |
|
| receiving server. |
|
| • | prop_hostname.ok |
|
|
| An empty file created on the propagating security server after a | |
|
| successful propagation to the host name security server. | |
| These files are critical and you must not compromise them under any | ||
| circumstances. |
| |
| |||
Table | Propagation Tools |
| |
|
|
|
|
|
| If You Want To: | Use This Tool: |
|
|
|
|
|
| Store the propagation configuration | kpropd.ini – This is a text file. |
|
| information used for propagation. |
|
|
|
|
|
|
| Create the default kpropd.ini file, | mkpropcf |
|
| based on the contents of the |
|
|
| configuration file, krb.conf. |
|
|
|
|
|
246 | Chapter 9 |