Bug 591681
Summary: | RFE: Gray out KDC and admin fields when kerberos parameters are discovered via DNS | |||
---|---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Stjepan Gros <stjepan.gros> | |
Component: | authconfig | Assignee: | Tomas Mraz <tmraz> | |
Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> | |
Severity: | medium | Docs Contact: | ||
Priority: | low | |||
Version: | 13 | CC: | jhrozek, sgallagh, tmraz | |
Target Milestone: | --- | Keywords: | FutureFeature | |
Target Release: | --- | |||
Hardware: | All | |||
OS: | Linux | |||
Whiteboard: | ||||
Fixed In Version: | authconfig-6.1.5-1.fc14 | Doc Type: | Enhancement | |
Doc Text: | Story Points: | --- | ||
Clone Of: | ||||
: | 591716 (view as bug list) | Environment: | ||
Last Closed: | 2010-08-10 14:18:35 UTC | Type: | --- | |
Regression: | --- | Mount Type: | --- | |
Documentation: | --- | CRM: | ||
Verified Versions: | Category: | --- | ||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
Cloudforms Team: | --- | Target Upstream Version: | ||
Embargoed: | ||||
Bug Depends On: | ||||
Bug Blocks: | 591716 |
Description
Stjepan Gros
2010-05-12 20:09:40 UTC
According to the krb5.conf manpage the DNS is used only when the realm and KDC is not filled in. I am not sure whether sssd behaves the same. Jakub, can you clarify? I think our default behavior is the same, but you're the authority. Yes, even though we don't have any equivalent of dns_lookup_kdc (which is the krb5.conf option set by the 'Use DNS to locate KDC for realms' checkbox), we always use service discovery when no KDCs are set. We don't have any equivalent of 'dns_lookup_realm' in SSSD at all - which is the second check box "Use DNS to resolve hosts to realms". Kerberos realm is also retrieved from DNS, so it also should be either grayed out or maybe automatically filled in. |