kerberos credentials on systemd-based CentOS 7

Stephen Ingram sbingram at gmail.com
Sun Sep 20 21:00:26 EDT 2015


I'm trying to setup a kerberos connection to an mupdate server using gssapi
authentication. I'm creating a credentials cache using a keytab file on the
system for user imap/machine1.domain.com. In the old init.d-based system, I
specified the KRB5_KTNAME and KRB5CCNAME environment variables, then when
the cyrus-master program ran, the ticket was fetched and the system was
able to connect. However, with systemd, it appears as though the server
should maybe use a persistent keyring to store the credentials. Even if I
try to use a file, say inside /var/lib/imap to escape selinux, the system
still fails to authenticate. Does anyone have this setup working that
allows a cyrus client to connect to an mupdate server to fetch mailbox
information?

Steve
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20150920/5013042f/attachment.html 


More information about the Info-cyrus mailing list