From the course: Linux System Engineer: Authentication with LDAP and Kerberos
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
Configure Kerberos client authentication
From the course: Linux System Engineer: Authentication with LDAP and Kerberos
Configure Kerberos client authentication
- [Instructor] Log in to your rhhost2 VM and open a terminal. To configure to Kerberos client, we need to install software. In a terminal, type in sudo yum install -y pam_krb5 krb5-workstation. Hit Enter. Type in your password if prompted. Let's now retrieve the Kerberos configuration file and the host-specific keytab file that we copied to /tmp from rhhost1. Type in clear and then type cd /tmp and type in ls. Here we see the krb5.conf file as well as the rhhost2.keytab file. Let's copy the krb5.conf file to /etc. Type in sudo cp -f krb5.conf /etc and hit Enter. This will overwrite the base configuration file that came with the krb5-workstation package. Now we need to use the ktutil command to load the keytab file and write it out. Type in clear and then type in sudo ktutil and hit Enter. To read the keytab file, type rkt for read keytab followed by the path to the keytab file. In our case, type in rkt /tmp/rhhost2.keytab and hit Enter. Now we're going to use wkt to write the keytab…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.