-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathkrb5HostSetup.sh
executable file
·48 lines (33 loc) · 2.41 KB
/
krb5HostSetup.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
#!/bin/bash
kadmin.local -q "addprinc -randkey ldap/[email protected]"
kadmin.local -q "ktadd ldap/[email protected]"
kadmin.local -q "addprinc -randkey ldap/[email protected]"
kadmin.local -q "ktadd ldap/[email protected]"
kadmin.local -q "addprinc -randkey host/[email protected]"
kadmin.local -q "ktadd host/[email protected]"
kadmin.local -q "addprinc -randkey host/[email protected]"
kadmin.local -q "ktadd host/[email protected]"
ldapadd -x -D cn=admin,dc=home,dc=local -w password123 -H ldap://auth.home.local -f user.ldif -c
#kadmin.local -q "addprinc -x dn=uid=mediaPlayer,ou=users,dc=home,dc=local -pw mediaPlayer mediaPlayer"
kadmin.local -q "addprinc -x dn=uid=pi,ou=users,dc=home,dc=local -pw toor pi"
kadmin.local -q "addprinc -x dn=cn=krb5-kdc,dc=home,dc=local -pw password123 krb5-kdc"
kadmin.local -q "addprinc -x dn=cn=krb5-admin,dc=home,dc=local -pw password123 krb5-admin"
systemctl restart krb5-kdc
systemctl restart krb5-admin-server
systemctl restart slapd
#ldappasswd -x -D cn=admin,dc=home,dc=local -w password123 uid=pi,ou=users,dc=home,dc=local -s toor
#sudo kdb5_util create -s -r home.local -P password123
#sudo kdb5_ldap_util -D cn=admin,dc=home,dc=local -w password123 -H ldap://auth.home.local create -P password123 -subtrees dc=home,dc=local -r home.local -s
#ldapadd -Y EXTERNAL -H ldapi:/// -f authRegex.ldif
#sudo ldapsearch -x -D cn=krb5-admin,dc=home,dc=local -w password123 -H ldap://auth.home.local -b dc=home,dc=local
#sudo ldapadd -Y EXTERNAL -H ldapi:/// -f authRegex.ldif
#ldapadd -x -D cn=admin,dc=home,dc=local -w password123 -H ldap://auth.home.local -f changeAdminPW.ldif
#ldappasswd -x -D cn=admin,dc=home,dc=local -s password123 uid=kdc-service,dc=home,dc=local -w password123
#ldappasswd -x -D cn=admin,dc=home,dc=local -s password123 uid=kadmin-service,dc=home,dc=local -w password123
#kdb5_ldap_util stashsrvpw -f /etc/krb5kdc/ldapservice.keyfile cn=krb5-admin,dc=home,dc=local
#kdb5_ldap_util stashsrvpw -f /etc/krb5kdc/ldapservice.keyfile cn=krb5-kdc,dc=home,dc=local
#ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b cn=schema,cn=config
#ldapsearch -Q -LLL -Y EXTERNAL -H ldapi:/// -b dc=home,dc=local
#ldappasswd -x -D cn=admin,dc=home,dc=local -w password123 uid=pi,ou=users,dc=home,dc=local -s toor
#sudo ldapadd -Q -LLL -Y EXTERNAL -H ldapi:/// -f authRegex.ldif
#scp -r [email protected]:~/gitProjects/ansible-ldap-Kerberose-server-rpi .