IvanBayan-krb5

Release 0.0.3

Repository Puppet Puppet Download

Keywords
debian, kerberos, krb5, concat, centos
License
GPL-3.0
Install
puppet module install IvanBayan-krb5 --version 0.0.3

Documentation

This is a puppet module for managing krb5 libs and krb5.conf

This module now support Debian 6, CentOS and Ubuntu
Module depend on 'ripienaar/concat' module, when i have been writing and testing module i use last version from http://github.com/ripienaar/puppet-concat

As a base i use next module  http://agileinf.web.cern.ch/agileinf/gitweb?p=punch-modules.git;a=tree;f=kerberos;hb=HEAD
Also as a template i use saz/ntp module. 
Thanks to all contributors.

Sample usage:

You can configure thru 'krb5' class next things:

autoupgrade - Upgrade packages automatically, if there is a newer version.
Default: true.

ensure - Ensure if present or absent.
Default: present.

package -  Name of the package (or packages). Only set this, if your platform is not supported or you know, what you're doing.
Default: auto-set (in params.pp), platform specific

config_file - Main configuration file.  Only set this, if your platform is not supported or you know, what you're doing.
Default: auto-set (in params.pp), platform specific

config_file_static - Copy configuration file from specified location. Set location if you want to replicate static config file.
Default: undef

class{ 'krb5':
	config_file	=> '/tmp/krb5.conf',
	package		=> [ 'libkrb53', 'krb5-user' ]
}

You can configure thru 'krb5::config' part of libdefaults and appdefaults options:

Look at config.pp for supported options and it is default values.

class{ 'krb5::config':
	krb5default => 'TEST.RU',
	krb5ticket_lifetime => '25h',
	krb5renew_lifetime  => '120h',
	krb5forwardable     => 'true',
	krb5proxiable       => 'true',
	krb5enctype         => ['arcfour-hmac-md5','aes256-cts','aes128-cts','des3-cbc-sha1','des-cbc-md5','des-cbc-crc'],
	krb5pam             => {'external'         => 'true',
                          'krb4_convert'     => 'false',
                          'krb4_convert_524' => 'false',
                          'krb4_use_as_req'  => 'false'
                         }
...	
}

You can configure thru 'krb5::realm' class, your realms. For supported values, look at config.pp

krb5::realm{ 'TEST.RU':
	default_domain  => 'test.ru',
	kdc             => ['dc1.test.ru:88', 'dc2.test.ru:88' ],
	kpasswd_server  => 'kpass.test.ru',
	admin_server    => 'kadmin.test.ru',
	v4_name_convert => { 'host' => { 'rcmd' => 'host' }  
}

Stats

Dependencies
1
Dependent packages
0
Dependent repositories
0
Total releases
3
Latest release
First release
Stars
6
Forks
19
Watchers
4
Contributors
4
Repository size
189 KB
SourceRank
0

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.0.3
0.0.2
0.0.1

Contributors

Ivan Mike Arnold Fabio Rauber Hans Persson


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2017-09-12 20:34:05 UTC

Login to resync this project