Campus Network as a Service

Samba / Kerberos configuration

/etc/samba/smb.conf

smb.conf
[libdefaults]
	default_realm = CNLAB.LOCAL
	kdc_timesync = 1
	ccache_type = 4
	forwardable = true
	proxiable = true
	dns_lookup_realm = false
	dns_lookup_kdc = true
	fcc-mit-ticketflags = true

[realms]
	CNLAB.LOCAL = {
		kdc = 10.102.0.10
		kdc = 10.102.0.11
		admin_server = labdc1
	}

[domain_realm]
[global]
   workgroup = CNLAB
   security = ADS
   realm = CNLAB.LOCAL
   winbind refresh tickets = yes
   vfs objects = acl_xattr
   map acl inherit = yes
   store dos attributes = yes

/etc/krb5.conf

krb5.conf
[libdefaults]
	default_realm = CNLAB.LOCAL
	kdc_timesync = 1
	ccache_type = 4
	forwardable = true
	proxiable = true
	dns_lookup_realm = false
	dns_lookup_kdc = true
	fcc-mit-ticketflags = true

[realms]
	CNLAB.LOCAL = {
		kdc = 10.102.0.10
		kdc = 10.102.0.11
		admin_server = labdc1
	}


  • No labels