Hi All,
I'm stuck on a Kerberos LDAP setup. I've basically copied and pasted the ldap configuration sample that came with the server. It gives me a "create: Invalid syntax while creating realm" every single time. I cannot get around it unless I remove the ldap portion. Here is the entire krb5.conf:
Code:
[logging]
default = FILE:/var/log/kerberos/krb5libs.log
kdc = FILE:/var/log/kerberos/krb5kdc.log
admin_server = FILE:/var/log/kerberos/kadmind.log
[libdefaults]
default_realm = <DOMAIN>.COM
dns_lookup_kdc = false
dns_looup_realm = false
default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc
default_tgs_enctypes = des3-hmac-sha1 des-cbc-crc
[realms]
<DOMAIN>.COM = {
default_domain = <domain>.com
kdc = tupperserver.<domain>.com
admin_server = tupperserver.<domain>.com
database_module = ldap
kpasswd_server = tupperserver.<domain>.com
}
[domain_realm]
.<domain>.com = <DOMAIN>.COM
[dbdefaults]
database_module = ldap
[dbmodules]
ldap = {
db_library = kldap
ldap_kerberos_container_dn = "ou=kerberos,dc=<domain>,dc=com"
ldap_kdc_dn = "cn=ldapadmin,dc=<domain>,dc=com"
ldap_kadmind_dn = "cn=ldapadmin,dc=<domain>,dc=com"
ldap_service_password_file = /etc/kerberos/krb5kdc/ldap.service
ldap_servers = ldap://127.0.0.1
ldap_conns_per_server = 5
}
Any thoughts on what could be causing this? I'm stumped.. its been two days now of looking at that file, sample files, moving things around, etc and still nothing.
