Open jusstol opened 1 year ago
The locations of krb5libs.log, krb5kdc.log and kadmind.log are hard coded in roles/ldap_kerberos/templates/krb5.conf.j2 : https://github.com/TOSIT-IO/tdp-collection-prerequisites/blob/d67f0aee2fab78c0e7dfb87dff97e84f16941f7f/roles/ldap_kerberos/templates/krb5.conf.j2#L3-L6 Can we create new variables to allow some customization ?
krb5libs.log
krb5kdc.log
kadmind.log
roles/ldap_kerberos/templates/krb5.conf.j2
Also, according to the MIT, the krb5.conf file may contain the following sections :
[libdefaults]
[realms]
[domain_realm]
[capaths]
[appdefaults]
[plugins]
And the kdc.conf file may contain the following ones :
[kdc_defaults]
[dbdefaults]
[dbmodules]
[logging]
Even if there is the includedir /etc/krb5.conf.d/ at the top, I feel like the logging section should move to the kdc.conf.j2 template to comply with the documentation.
includedir /etc/krb5.conf.d/
The locations of
krb5libs.log
,krb5kdc.log
andkadmind.log
are hard coded inroles/ldap_kerberos/templates/krb5.conf.j2
: https://github.com/TOSIT-IO/tdp-collection-prerequisites/blob/d67f0aee2fab78c0e7dfb87dff97e84f16941f7f/roles/ldap_kerberos/templates/krb5.conf.j2#L3-L6 Can we create new variables to allow some customization ?Also, according to the MIT, the krb5.conf file may contain the following sections :
[libdefaults]
[realms]
[domain_realm]
[capaths]
[appdefaults]
[plugins]
And the kdc.conf file may contain the following ones :
[kdc_defaults]
[realms]
[dbdefaults]
[dbmodules]
[logging]
👈Even if there is the
includedir /etc/krb5.conf.d/
at the top, I feel like the logging section should move to the kdc.conf.j2 template to comply with the documentation.