WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-05-16 13:56:03 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
9ad5a3666cb23d3500a414c7eb08c2eaabcd07f8
fedora-infra_ansible/roles/base/templates/krb5.conf.master.j2
Patrick Uiterwijk cd50a3c55d Disable rdns on masters 
Signed-off-by: Patrick Uiterwijk <puiterwijk@redhat.com>
2016-12-22 16:51:57 +00:00

55 lines
1.3 KiB
Django/Jinja
Raw Blame History

includedir /var/lib/sss/pubconf/krb5.include.d/
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
{% if env == "production" %}
default_realm = FEDORAPROJECT.ORG
{% else %}
default_realm = STG.FEDORAPROJECT.ORG
{% endif %}
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
renew_lifetime = 7d
forwardable = true
dns_canonicalize_hostname = false
rdns = false
[realms]
{% if env == "production" %}
FEDORAPROJECT.ORG = {
default_domain = fedoraproject.org
{% else %}
STG.FEDORAPROJECT.ORG = {
default_domain = stg.fedoraproject.org
{% endif %}
kdc = {{inventory_hostname}}:88
master_kdc = {{inventory_hostname}}:88
admin_server = {{inventory_hostname}}:749
pkinit_anchors = FILE:/etc/ipa/ca.crt
}
[domain_realm]
{% if env == "production" %}
.fedoraproject.org = FEDORAPROJECT.ORG
fedoraproject.org = FEDORAPROJECT.ORG
{{inventory_hostname}} = FEDORAPROJECT.ORG
{% else %}
.stg.fedoraproject.org = STG.FEDORAPROJECT.ORG
stg.fedoraproject.org = STG.FEDORAPROJECT.ORG
{{inventory_hostname}} = STG.FEDORAPROJECT.ORG
{% endif %}
[dbmodules]
{% if env == "production" %}
FEDORAPROJECT.ORG = {
{% else %}
STG.FEDORAPROJECT.ORG = {
{% endif %}
db_library = ipadb.so
}
Reference in New Issue View Git Blame Copy Permalink