kerberos: Added admin/admin principal

feff4051 · ALEXANDER PAUL HASKELL · 1318dd20 · feff4051 · feff4051
Commit feff4051 authored Jan 11, 2017 by ALEXANDER PAUL HASKELL
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 5 deletions

roles/kerberos/files/add_test_users roles/kerberos/files/add_test_users +1 -0

roles/kerberos/handlers/main.yml roles/kerberos/handlers/main.yml +5 -5

No files found.
--- a/roles/kerberos/files/add_test_users
+++ b/roles/kerberos/files/add_test_users
+add_principal -pw secret admin/admin
 add_principal -pw Password123 -e aes256-cts-hmac-sha1-96:normal,aes128-cts-hmac-sha1-96:normal,des3-cbc-sha1:normal,des3-cbc-sha1-kd:normal +requires_preauth gud1
 add_principal -pw Password123 -e des-cbc-md5:normal +requires_preauth gud2
 add_principal -pw Password123 -expire 1/1/2017 +requires_preauth bad1

--- a/roles/kerberos/handlers/main.yml
+++ b/roles/kerberos/handlers/main.yml
@@ -2,7 +2,7 @@
 # file: roles/jboss/handlers/main.yml

 - name: initialize kerberos
-  shell: kdb5_util create -s < ~/kdb_password creates="/var/kerberos/krb5kdc/principal"
+  shell: kdb5_util create -s < ~/kdb_password

 - name: restart kdc
  service: name=krb5kdc state=restarted
@@ -10,8 +10,8 @@
 - name: restart kadmin
  service: name=kadmin state=restarted

- name: create keytab
-  shell: kadmin.local <<< "ktadd -k /etc/krb5.keytab kadmin/admin@dce.psu.edu" creates="/etc/krb5.keytab"
-
 - name: create test users
-  shell: kadmin.local < ~/add_test_users && touch /var/kerberos/krb5kdc/test_users_exist creates="/var/kerberos/krb5kdc/test_users_exist"
+  shell: kadmin.local < ~/add_test_users
+
+- name: create keytab
+  command: kadmin.local -q "ktadd -k /etc/krb5.keytab admin/admin@dce.psu.edu"