...
ktpass -princ HTTP/tst2srv01-2016.xy-hospital.xy@XY-HOSPITAL.XY
-mapuser custoKerberos@xy-hospital.xy
-crypto rc4-hmac-nt -ptype KRB5_NT_PRINCIPAL
-pass custosecretPW! -out "C:\Program Files\custo diagnostic server\conf\tomcat.keytab"
...
Code Block |
---|
[libdefaults] debug = true default_realm = XY-HOSPITAL.XY dns_lookup_kdc = false default_keytab_name = FILE:C:\Program Files\custo diagnostic server\conf\tomcat.keytab krb4_config = /etc/krb.conf krb4_realms = /etc/krb.realms kdc_timesync = 1 ccache_type = 4 forwardable = true proxiable = true [realms] XY-HOSPITAL.XY = { # # Specify your Domain Controller here kdc = tst2dc01.xy-hospital.xy admin_server = tst2dc01.xy-hospital.xy default_domain = xy-hospital.xy } [domain_realm] .xy-hospital.xy = XY-HOSPITAL.XY [login] krb4_convert = true krb4_get_tickets = false |
...
We attached the file to download it for you. Please do not use copy/paste from the code below - use the files attached to this website.
Attention !
principal Name must be IDENTICAL (case sensitive) to the principal Name used with ktpass
Be aware of forward slahes in file Name
Code Block |
---|
Code Block |
# Attention!
# principal Name must be IDENTICAL (case sensitive) to the principal Name used with ktpass
# Be aware of forward slahes in file Name
# 2020-02-04, FHo
com.sun.security.jgss.krb5.initiate {
com.sun.security.auth.module.Krb5LoginModule required
doNotPrompt=true
principal="HTTP/tst2srv01-2016.xy-hospital.xy@XY-HOSPITAL.XY"
useKeyTab=true
keyTab="C:/Program Files/custo diagnostic server/conf/tomcat.keytab"
storeKey=true;
};
com.sun.security.jgss.krb5.accept {
com.sun.security.auth.module.Krb5LoginModule required
doNotPrompt=true
principal="HTTP/tst2srv01-2016.xy-hospital.xy@XY-HOSPITAL.XY"
useKeyTab=true
keyTab="C:/Program Files/custo diagnostic server/conf/tomcat.keytab"
storeKey=true;
};
|
...