Propagating the Kerberos Server
The kpropd.ini File
child[n]=fqdn Specifies the child security server of the secsrv_name
| in the propagation hierarchy, where fqdn is the FQDN |
| of the child server. A security server can have zero or |
| more child servers. |
| If more than one child server receives propagated |
| records from secsrv_name, include a complete child |
| configuration line for each additional child, where each |
| child is uniquely numbered with the suffix n, beginning |
| with child1. |
|
|
NOTE | You cannot override the interval, service_name, or |
| primary_realm values that you set in the |
| [default_values] section. |
| Examples |
| |
| Following is a sample [secsrv_name] section in the Kerberos |
| configuration file: |
| REALM1 |
| REALM1 secsrv1.company.com admin server |
| REALM2 secsrv1.company.com admin server |
| REALM1 secsrv1.company.com |
| REALM2 secsrv2.company.com |
| REALM2 secsrv2.company.com |
| REALM1 secsrv3.company.com |
| REALM2 secsrv4.company.com |
| The [secsrv_name] section denotes a propagation hierarchy where |
| secsrv1 is the primary security server and the parent of the secondary |
| security server, secsrv2. In addition, secsrv2 is the parent of the |
| secsrv3 and secsrv4 secondary security servers. |
| The security servers secsrv1 and secsrv2 support the realms REALM1 |
| and REALM2. The secondary security server secsrv3 supports only |
| REALM1, while secsrv4 supports only REALM2. All servers have a |
| host/fqdn principal in REALM1. |
| Following is a sample [default_values] section: |
Chapter 9 | 255 |