Академический Документы
Профессиональный Документы
Культура Документы
iptables -F
systemctl stop iptables
systemctl disable iptables
ntpq -p
date -R
vim /var/kerberos/krb5kdc/kdc.conf
default_principal_flags = +preauth
useradd user1
kadmin.local
addprinc root/admin
addprinc user1
<Sunday1234>
vim /etc/ssh/ssh_config
systemctl reload sshd
authconfig --enablekrb5 --update
vim /etc/firewalld/services/kerberos.xml
su - user1
kinit
<Sunday1234>
klist
===============
nfsserver
yum groupinstall file-server -y
mkdir /kerberos
chmod 0777 /kerberos/
setsebool -P nfs_export_all_rw on
setsebool -P nfs_export_all_ro on
setsebool -P use_nfs_home_dirs on
vim /etc/exports
/kerberos desktop.example.com(rw,sync,no_root_squash,sec=krb5p)
exportfs -arv
showmount -e localhost
cat /etc/krb5.conf
useradd user1
kadmin
addprinc -randkey host/server.example.com
ktadd host/server.example.com
quit
vim /etc/ssh/ssh_config
su - user1
kinit
<Sunday1234>
klist
ssh classroom.example.com
exit
exit
kadmin
<Sunday1234>
addprinc -randkey nfs/server.example.com
ktadd nfs/server.example.com
quit
=============================================
Nfs client
=============================================
yum install nfs-utils -y
yum install krb5-workstation pam_krb5
scp root@classroom.example.com:/etc/krb5.conf /etc/krb5.conf
cat /etc/krb5.conf
kadmin
addprinc -randkey host/desktop.example.com
ktadd host/desktop.example.com
quit
vim /etc/ssh/ssh_config
useradd user1
su - user1
kinit
klist
ssh classroom.example.com
exit
exit
kadmin
addprinc -randkey nfs/desktop.example.com
ktadd nfs/desktop.example.com
quit
vim /etc/fstab
server.example.com:/kerberos /mnt nfs sec=krb5p 0 0
mount -a
df -h