94 lines
1.3 KiB
Bash
94 lines
1.3 KiB
Bash
#!/bin/bash
|
|
|
|
cat > /etc/krb5.conf << EOL
|
|
[logging]
|
|
default = SYSLOG:DEBUG
|
|
kdc = SYSLOG:DEBUG
|
|
admin_server = SYSLOG:DEBUG
|
|
|
|
[libdefaults]
|
|
dns_lookup_realm = false
|
|
ticket_lifetime = 24h
|
|
renew_lifetime = 7d
|
|
forwardable = true
|
|
rdns = false
|
|
default_realm = ${NFS_KRB_REALM}
|
|
|
|
[realms]
|
|
${NFS_KRB_REALM} = {
|
|
kdc = localhost
|
|
admin_server = localhost
|
|
}
|
|
EOL
|
|
|
|
cat > /etc/idmapd.conf << EOC
|
|
[General]
|
|
Domain = ${NFS_KRB_REALM}
|
|
Verbosity = 5
|
|
EOC
|
|
|
|
cat > /etc/nfs.conf << EOC
|
|
[general]
|
|
pipefs-directory=/run/rpc_pipefs
|
|
|
|
[exports]
|
|
|
|
[exportfs]
|
|
debug=1
|
|
|
|
[gssd]
|
|
verbosity=5
|
|
rpc-verbosity=5
|
|
keytab-file=/etc/krb5.keytab
|
|
|
|
[exportd]
|
|
debug="all"
|
|
|
|
[mountd]
|
|
debug="all"
|
|
manage-gids=y
|
|
port=892
|
|
|
|
[nfsdcld]
|
|
debug=1
|
|
|
|
[nfsdcltrack]
|
|
debug=1
|
|
|
|
[nfsd]
|
|
debug=1
|
|
# threads=8
|
|
# host=
|
|
# grace-time=90
|
|
# lease-time=90
|
|
udp=y
|
|
tcp=y
|
|
vers3=y
|
|
vers4=y
|
|
vers4.0=y
|
|
vers4.1=y
|
|
vers4.2=y
|
|
EOC
|
|
|
|
touch /var/lib/krb5kdc/kadm5.acl
|
|
|
|
kdb5_util -r "${NFS_KRB_REALM}" create -s << EOL
|
|
${NFS_KRB_PWD}
|
|
${NFS_KRB_PWD}
|
|
EOL
|
|
|
|
DOMAIN=$(echo "$NFS_KRB_REALM" | tr '[:upper:]' '[:lower:]')
|
|
echo "${DOMAIN}" > /etc/hostname
|
|
|
|
# setup logging
|
|
|
|
rpcdebug -m nfsd -s all
|
|
rpcdebug -m nfs -s all
|
|
rpcdebug -m rpc -s all
|
|
|
|
kadmin.local << EOS
|
|
addprinc ${NFS_KRB_PRINC}@${NFS_KRB_REALM}
|
|
${NFS_KRB_PWD}
|
|
${NFS_KRB_PWD}
|
|
ktadd -norandkey ${NFS_KRB_PRINC}@${NFS_KRB_REALM}
|
|
EOS |