API tools faq
paste
Guest User

Untitled

a guest
Mar 11th, 2018
80
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 10.05 KB | None | 0 0
raw download clone embed print report
  1. [logging]
  2. default = FILE:/var/log/krb5libs.log
  3. kdc = FILE:/var/log/krb5kdc.log
  4. admin_server = FILE:/var/log/kadmind.log
  5. [libdefaults]
  6. default_realm = ABC.COM
  7. dns_lookup_realm = false
  8. dns_lookup_kdc = false
  9. ticket_lifetime = 24h
  10. renew_lifetime = 7d
  11. forwardable = true
  12. allow_weak_crypto = true
  13. default_tkt_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
  14. default_tgs_enctypes = des-cbc-md5 des-cbc-crc des3-cbc-sha1
  15. [realms]
  16. ABC.COM = {
  17. kdc = kdcserver
  18. admin_server = kdcserver
  19. default_domain= kdcserver
  20. database_module = openldap_ldapconf
  21. }
  22. [appdefaults]
  23. pam = {
  24. debug = false
  25. ticket_lifetime = 36000
  26. renew_lifetime = 36000
  27. forwardable = true
  28. krb4_convert = false
  29. }
  30. [dbmodules]
  31. openldap_ldapconf = {
  32. db_library = kldap
  33. ldap_kerberos_container_dn = cn=kerberos,dc=abc,dc=com
  34. ldap_kdc_dn = "cn=manager,dc=abc,dc=com"
  35. ldap_kadmind_dn = "cn=manager,dc=abc,dc=com"
  36. ldap_service_password_file = /etc/krb5.d/stash.keyfile
  37. ldap_servers = ldap://kdcserver
  38. ldap_conns_per_server = 5
  39. }
  40.  
  41. dn: dc=abc,dc=com
  42. objectClass: top
  43. objectClass: dcObject
  44. objectClass: organization
  45. o: abchadoop
  46. dc: ABC
  47.  
  48. dn: ou=groups,dc=abc,dc=com
  49. objectClass: top
  50. objectClass: organizationalUnit
  51. ou: groups
  52. description: LDAP Group
  53.  
  54. dn: ou=services,dc=abc,dc=com
  55. objectClass: top
  56. objectClass: organizationalUnit
  57. ou: services
  58.  
  59. dn: cn=hcat,ou=services,dc=abc,dc=com
  60. objectClass: top
  61. objectClass: applicationProcess
  62. objectClass: simpleSecurityObject
  63. cn: hcat
  64. userPassword: hcat-password
  65.  
  66. dn: cn=hdfs,ou=services,dc=abc,dc=com
  67. objectClass: top
  68. objectClass: applicationProcess
  69. objectClass: simpleSecurityObject
  70. cn: hdfs
  71. userPassword: hdfs-password
  72.  
  73. dn: cn=yarn,ou=services,dc=abc,dc=com
  74. objectClass: top
  75. objectClass: applicationProcess
  76. objectClass: simpleSecurityObject
  77. cn: yarn
  78. userPassword: yarn-password
  79.  
  80. dn: cn=mapred,ou=services,dc=abc,dc=com
  81. objectClass: top
  82. objectClass: applicationProcess
  83. objectClass: simpleSecurityObject
  84. cn: mapred
  85. userPassword: mapred-password
  86.  
  87. dn: cn=hbase,ou=services,dc=abc,dc=com
  88. objectClass: top
  89. objectClass: applicationProcess
  90. objectClass: simpleSecurityObject
  91. cn: hbase
  92. userPassword: hbase-password
  93.  
  94. dn: cn=zookeeper,ou=services,dc=abc,dc=com
  95. objectClass: top
  96. objectClass: applicationProcess
  97. objectClass: simpleSecurityObject
  98. cn: zookeeper
  99. userPassword: zookeeper-password
  100.  
  101. dn: cn=oozie,ou=services,dc=abc,dc=com
  102. objectClass: top
  103. objectClass: applicationProcess
  104. objectClass: simpleSecurityObject
  105. cn: oozie
  106. userPassword: oozie-password
  107.  
  108. dn: cn=hive,ou=services,dc=abc,dc=com
  109. objectClass: top
  110. objectClass: applicationProcess
  111. objectClass: simpleSecurityObject
  112. cn: hive
  113. userPassword: hive-password
  114.  
  115. dn: cn=hcat,ou=groups,dc=abc,dc=com
  116. objectClass: top
  117. objectClass: groupOfNames
  118. cn: hcat
  119. member: cn=hcat,ou=services,dc=abc,dc=com
  120.  
  121. dn: cn=hdfs,ou=groups,dc=abc,dc=com
  122. objectClass: top
  123. objectClass: groupOfNames
  124. cn: hdfs
  125. member: cn=hdfs,ou=services,dc=abc,dc=com
  126.  
  127. dn: cn=yarn,ou=groups,dc=abc,dc=com
  128. objectClass: top
  129. objectClass: groupOfNames
  130. cn: yarn
  131. member: cn=yarn,ou=services,dc=abc,dc=com
  132.  
  133. dn: cn=mapred,ou=groups,dc=abc,dc=com
  134. objectClass: top
  135. objectClass: groupOfNames
  136. cn: mapred
  137. member: cn=mapred,ou=services,dc=abc,dc=com
  138.  
  139. dn: cn=hbase,ou=groups,dc=abc,dc=com
  140. objectClass: top
  141. objectClass: groupOfNames
  142. cn: hbase
  143. member: cn=hbase,ou=services,dc=abc,dc=com
  144.  
  145. dn: cn=zookeeper,ou=groups,dc=abc,dc=com
  146. objectClass: top
  147. objectClass: groupOfNames
  148. cn: zookeeper
  149. member: cn=zookeeper,ou=services,dc=abc,dc=com
  150.  
  151. dn: cn=oozie,ou=groups,dc=abc,dc=com
  152. objectClass: top
  153. objectClass: groupOfNames
  154. cn: oozie
  155. member: cn=oozie,ou=services,dc=abc,dc=com
  156.  
  157. dn: cn=hive,ou=groups,dc=abc,dc=com
  158. objectClass: top
  159. objectClass: groupOfNames
  160. cn: hive
  161. member: cn=hive,ou=services,dc=abc,dc=com
  162.  
  163. dn: cn=hadoop,ou=groups,dc=abc,dc=com
  164. objectClass: top
  165. objectClass: groupOfNames
  166. cn: hadoop
  167. member: cn=hcat,ou=services,dc=abc,dc=com
  168. member: cn=hdfs,ou=services,dc=abc,dc=com
  169. member: cn=yarn,ou=services,dc=abc,dc=com
  170. member: cn=mapred,ou=services,dc=abc,dc=com
  171. member: cn=hbase,ou=services,dc=abc,dc=com
  172. member: cn=zookeeper,ou=services,dc=abc,dc=com
  173. member: cn=oozie,ou=services,dc=abc,dc=com
  174. member: cn=hive,ou=services,dc=abc,dc=com
  175.  
  176. dn: ou=temp,dc=abc,dc=com
  177. objectClass: top
  178. objectClass: organizationalUnit
  179. ou: temp
  180.  
  181. dn: cn=kerberos,dc=abc,dc=com
  182. objectClass: krbContainer
  183. cn: kerberos
  184.  
  185. dn: cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  186. cn: ABC.COM
  187. objectClass: top
  188. objectClass: krbRealmContainer
  189. objectClass: krbTicketPolicyAux
  190. krbSubTrees: dc=abc,dc=com
  191.  
  192. dn: krbPrincipalName=K/M@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  193. krbLoginFailedCount: 0
  194. krbMaxTicketLife: 86400
  195. krbMaxRenewableAge: 0
  196. krbTicketFlags: 64
  197. krbPrincipalName: K/M@ABC.COM
  198. krbPrincipalExpiration: 19700101000000Z
  199. krbPrincipalKey:: MG6gAwIBAaEDAgEBogMCAQGjAwIBAKRYMFYwVKAHMAWgAwIBAKFJMEegAwIBEq
  200. FABD4gACudDckNzjqfNLNduN5RERcEp/phS6+G/h0Wdup2/y+Y9bNOP0PMQdE3Fu6UJRKixPiMUPH59
  201. mprnoPpkQ==
  202. krbLastPwdChange: 19700101000000Z
  203. krbExtraData:: AAkBAAEALWmiWg==
  204. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  205. krbExtraData:: AAcBAAIAAhMIAQAAAAA=
  206. objectClass: krbPrincipal
  207. objectClass: krbPrincipalAux
  208. objectClass: krbTicketPolicyAux
  209.  
  210. dn: krbPrincipalName=krbtgt/ABC.COM@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  211. krbLoginFailedCount: 0
  212. krbMaxTicketLife: 86400
  213. krbMaxRenewableAge: 0
  214. krbTicketFlags: 0
  215. krbPrincipalName: krbtgt/ABC.COM@ABC.COM
  216. krbPrincipalExpiration: 19700101000000Z
  217. krbPrincipalKey:: MIIBTKADAgEBoQMCAQGiAwIBAaMDAgEApIIBNDCCATAwVKAHMAWgAwIBAKFJME
  218. egAwIBEqFABD4gAHaAH+zsuGSt6J3isOKXez4Nu2LRShW6wreSizhdEyqxBO+3aJDXgLWi4WvWzc86F
  219. 7wKyab1qt4ZwiQ16jBEoAcwBaADAgEAoTkwN6ADAgERoTAELhAAwYBS8GIaaJH4PQYo8FFMsA/GSNmv
  220. cjweFhdJq6NYs0mmJDJHiBIeKifNPP0wTKAHMAWgAwIBAKFBMD+gAwIBEKE4BDYYAIfx7NqeVW0Qdj3
  221. VY3r7A/EWzE39RTeU4YfVvOiLLF7llwnmhVBOwxS6//+8VhfbLthC/CMwRKAHMAWgAwIBAKE5MDegAw
  222. IBF6EwBC4QAD/64qF/jbLScov2PillRnkUwTZZC9cWqs8g2YQMNlldaGMAo5pJyGTjxAWB
  223. krbLastPwdChange: 19700101000000Z
  224. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  225. krbExtraData:: AAcBAAIAAhMIAQAAAAA=
  226. objectClass: krbPrincipal
  227. objectClass: krbPrincipalAux
  228. objectClass: krbTicketPolicyAux
  229.  
  230. dn: krbPrincipalName=kadmin/admin@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  231. krbLoginFailedCount: 0
  232. krbMaxTicketLife: 10800
  233. krbMaxRenewableAge: 0
  234. krbTicketFlags: 4
  235. krbPrincipalName: kadmin/admin@ABC.COM
  236. krbPrincipalExpiration: 19700101000000Z
  237. krbPrincipalKey:: MIIBTKADAgEBoQMCAQGiAwIBAaMDAgEApIIBNDCCATAwVKAHMAWgAwIBAKFJME
  238. egAwIBEqFABD4gAC2wcqF48ii/FgncQ0tCL1RoeKaJvzKduUG53bVCAVnQZgaKmD/7yU90fWLqXvw04
  239. 0eaoGoOd3h7OUNVkjBEoAcwBaADAgEAoTkwN6ADAgERoTAELhAAaGRk0ddcEM5kHP48daKTkwOMSpA9
  240. OcEA5eIC8MkrTWvBCdfv051k1VlZmzcwTKAHMAWgAwIBAKFBMD+gAwIBEKE4BDYYAHfX7kKE1WMVjT6
  241. XO2fiGH2gKmHP2HIPohKSksmS/hkBlLT137bt4CEbkBftJO5UDBTts0IwRKAHMAWgAwIBAKE5MDegAw
  242. IBF6EwBC4QAPLSVWzkyPn9jsqVmqVjtNWE78Q7VlYKfzMmOLfbi75QwfUn4LdUiM5bt0dF
  243. krbLastPwdChange: 19700101000000Z
  244. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  245. krbExtraData:: AAcBAAIAAnQuQ09NAAA=
  246. objectClass: krbPrincipal
  247. objectClass: krbPrincipalAux
  248. objectClass: krbTicketPolicyAux
  249.  
  250. dn: krbPrincipalName=kadmin/changepw@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  251. krbLoginFailedCount: 0
  252. krbMaxTicketLife: 300
  253. krbMaxRenewableAge: 0
  254. krbTicketFlags: 8196
  255. krbPrincipalName: kadmin/changepw@ABC.COM
  256. krbPrincipalExpiration: 19700101000000Z
  257. krbPrincipalKey:: MIIBTKADAgEBoQMCAQGiAwIBAaMDAgEApIIBNDCCATAwVKAHMAWgAwIBAKFJME
  258. egAwIBEqFABD4gAFX+BT8lg5ixjLNaj+a7CMoZ+XXNmiyo7Ts4ULJudMIorvAYqb6Dv6jmY3fH1vXpM
  259. 2sfzClzYPrHB7KTHjBEoAcwBaADAgEAoTkwN6ADAgERoTAELhAA5mBHHHWdu2/OcdDqLMs68DohSYjs
  260. c6TyhN1YElOtMm6gJVhc5uwo2G5XK2UwTKAHMAWgAwIBAKFBMD+gAwIBEKE4BDYYAGyzwsAHmYL93eN
  261. 8sPzWEvBXuFMrRuYg4DhFBthYCWPOdb6VRx9ZCbXdSp4RHZY/M1PtN2wwRKAHMAWgAwIBAKE5MDegAw
  262. IBF6EwBC4QAFdl8GPHWYz1wd1aqwH5PwdoQLxUOnyVTalDphHZsNnS7EOcTttENZGl32ks
  263. krbLastPwdChange: 19700101000000Z
  264. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  265. krbExtraData:: AAcBAAIAAnQuQ09NAAA=
  266. objectClass: krbPrincipal
  267. objectClass: krbPrincipalAux
  268. objectClass: krbTicketPolicyAux
  269.  
  270. dn: krbPrincipalName=kadmin/history@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  271. krbLoginFailedCount: 0
  272. krbMaxTicketLife: 86400
  273. krbMaxRenewableAge: 0
  274. krbTicketFlags: 0
  275. krbPrincipalName: kadmin/history@ABC.COM
  276. krbPrincipalExpiration: 19700101000000Z
  277. krbPrincipalKey:: MG6gAwIBAaEDAgEBogMCAQGjAwIBAKRYMFYwVKAHMAWgAwIBAKFJMEegAwIBEq
  278. FABD4gAFY4hn8yhgHzwKY5TbObosMf9OWNXbo27WuB6fuFqbZsNZHTyaipRxXJhHv48pSRnf8BVlcdv
  279. 8K+DTKBVQ==
  280. krbLastPwdChange: 19700101000000Z
  281. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  282. krbExtraData:: AAcBAAIAAnQuQ09NAAA=
  283. objectClass: krbPrincipal
  284. objectClass: krbPrincipalAux
  285. objectClass: krbTicketPolicyAux
  286.  
  287. dn: krbPrincipalName=kadmin/kdcserver@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  288. krbLoginFailedCount: 0
  289. krbMaxTicketLife: 10800
  290. krbMaxRenewableAge: 0
  291. krbTicketFlags: 4
  292. krbPrincipalName: kadmin/kdcserver@ABC.COM
  293. krbPrincipalExpiration: 19700101000000Z
  294. krbPrincipalKey:: MIIBTKADAgEBoQMCAQGiAwIBAaMDAgEApIIBNDCCATAwVKAHMAWgAwIBAKFJME
  295. egAwIBEqFABD4gADyFdZ7JiK9Pba54oF0hbjGPYSBq6H+qnM+U8o1oZ33mZ1BAACqEQHOrAt8qDXZYY
  296. UWEfb5y8V6utGc3ejBEoAcwBaADAgEAoTkwN6ADAgERoTAELhAAJT06wv7xrB6z+3+o/wfaILDr2x4U
  297. piJbyfkNWEe1oNJZLjvE9UMIxnfn+wYwTKAHMAWgAwIBAKFBMD+gAwIBEKE4BDYYADAgGFWbWOaeRFS
  298. zKcjTDJMJX4QXV1rCrZEYuE0hcaDTQjCoMXleLiD4uB0LtIqqyarCmOwwRKAHMAWgAwIBAKE5MDegAw
  299. IBF6EwBC4QADjw1CyXbfBBAxJqTkQrLDRwTtzDcJ8IqPVDmTGL1nzMOkNrWz7qlCJnCDkx
  300. krbLastPwdChange: 19700101000000Z
  301. krbExtraData:: AAItaaJaZGJfY3JlYXRpb25AU1RDSERQLkNPTQA=
  302. krbExtraData:: AAcBAAIAAhMIAWlwYWw=
  303. objectClass: krbPrincipal
  304. objectClass: krbPrincipalAux
  305. objectClass: krbTicketPolicyAux
  306.  
  307. dn: krbPrincipalName=admin/admin@ABC.COM,cn=ABC.COM,cn=kerberos,dc=abc,dc=com
  308. krbPrincipalName: admin/admin@ABC.COM
  309. krbPrincipalKey:: MFagAwIBAaEDAgEBogMCAQGjAwIBAaRAMD4wPKAHMAWgAwIBAKExMC+gAwIBAa
  310. EoBCYIAM4316dUizxrzzChKklYEj+jWWooaIE1pDuORugR4rbQH5DV+w==
  311. krbLastPwdChange: 20180309155715Z
  312. objectClass: krbPrincipal
  313. objectClass: krbPrincipalAux
  314. objectClass: krbTicketPolicyAux
  315. krbLoginFailedCount: 3
  316. krbLastFailedAuth: 20180309155925Z
  317. krbExtraData:: AALbrqJacm9vdC9hZG1pbkBTVENIRFAuQ09NAA==
  318. krbExtraData:: AAgBAA==
  319.  
  320. dn: ou=people,dc=abc,dc=com
  321. objectClass: top
  322. objectClass: organizationalUnit
  323. ou: people
  324.  
  325. dn: cn=ud_anwaar,ou=people,dc=abc,dc=com
  326. objectClass: top
  327. objectClass: person
  328. objectClass: organizationalPerson
  329. objectClass: inetOrgPerson
  330. cn: ud_anwaar
  331. sn: ud_anwaar
  332. uid: ud_anwaar
  333. userPassword: abcd1234
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!