Displaying 1 result from an estimated 1 matches for "retrieve_keytab_for".
2011 Sep 15
3
puppet and kerberos keytabs
Hi,
we use kerberos with keytabs on our clients. We do *not* trust root on
the clients! One client should never have access to any other client''s
keytab. This is my proposed solution to get the keytabs to the clients,
any comments welcome!
1. Use file to get /root/.ssh/authorized_keys
2. Use exported resource to let the client "notify" the server that it
wants a keytab
3. On