2 default_realm = TEST.H5L.SE TEST2.H5L.SE
3 default_cc_collection = DIR:@objdir@/cc_dir/
5 allow_weak_crypto = @WEAK@
11 pkinit_anchors = FILE:@srcdir@/../../lib/hx509/data/ca.crt
13 reconnect-backoff = 2s
18 kdc = localhost:@port@
19 admin_server = localhost:@admport@
20 kpasswd_server = localhost:@pwport@
23 kdc = localhost:@port@
26 kdc = localhost:@port@
27 kpasswd_server = localhost:@pwport@
30 kdc = localhost:@port@
33 kdc = localhost:@port@
36 kdc = localhost:@port@
39 kdc = localhost:@port@
42 kdc = localhost:@port@
45 kdc = localhost:@port@
48 kdc = http/localhost:@port@
51 kdc = localhost:@port@
54 kdc = localhost:@port@
57 kdc = localhost:@port@
60 kdc = localhost:@port@
64 .test.h5l.se = TEST.H5L.SE
65 .sub.test.h5l.se = SUB.TEST.H5L.SE
66 .h1.test.h5l.se = H1.TEST.H5L.SE
67 .h2.test.h5l.se = H2.TEST.H5L.SE
68 .h3.h2.test.h5l.se = H3.H2.TEST.H5L.SE
69 .h4.h2.test.h5l.se = H4.H2.TEST.H5L.SE
70 .example.com = TEST2.H5L.SE
71 localhost = TEST.H5L.SE
72 .localdomain = TEST.H5L.SE
73 localdomain = TEST.H5L.SE
74 .localdomain6 = TEST.H5L.SE
75 localdomain6 = TEST.H5L.SE
80 allow-anonymous = true
81 digests_allowed = chap-md5,digest-md5,ntlm-v1,ntlm-v1-session,ntlm-v2,ms-chap-v2
82 strict-nametypes = true
87 pkinit_identity = FILE:@srcdir@/../../lib/hx509/data/kdc.crt,@srcdir@/../../lib/hx509/data/kdc.key
88 pkinit_anchors = FILE:@srcdir@/../../lib/hx509/data/ca.crt
89 pkinit_pool = FILE:@srcdir@/../../lib/hx509/data/sub-ca.crt
90 # pkinit_revoke = CRL:@srcdir@/../../lib/hx509/data/crl1.crl
91 pkinit_mappings_file = @srcdir@/pki-mapping
92 pkinit_allow_proxy_certificate = true
96 dbname = @db_type@:@objdir@/current-db@kdc@
98 mkey_file = @objdir@/mkey.file
99 acl_file = @srcdir@/heimdal.acl
100 log_file = @objdir@/current@kdc@.log
103 dbname = @db_type@:@objdir@/current-db@kdc@
105 mkey_file = @objdir@/mkey.file
106 acl_file = @srcdir@/heimdal.acl
107 log_file = @objdir@/current@kdc@.log
110 dbname = sqlite:@objdir@/current-db@kdc@.sqlite3
111 realm = SOME-REALM5.FR
112 mkey_file = @objdir@/mkey.file
113 acl_file = @srcdir@/heimdal.acl
114 log_file = @objdir@/current@kdc@.log
118 signal_socket = @objdir@/signal
119 iprop-stats = @objdir@/iprop-stats
120 iprop-acl = @srcdir@/iprop-acl
127 kdc = 0-/FILE:@objdir@/messages.log
128 krb5 = 0-/FILE:@objdir@/messages.log
129 default = 0-/FILE:@objdir@/messages.log
131 # If you are doing preformance measurements on OSX you want to change
132 # the kdc LOG line from = to - below to keep the FILE open and avoid
133 # open/write/close which is blocking (rdar:// ) on OSX.
134 # kdc = 0-/FILE=@objdir@/messages.log
138 default_key_rules = {
139 */des3-only@* = des3-cbc-sha1:pw-salt
140 */aes-only@* = aes256-cts-hmac-sha1-96:pw-salt
148 TEST3.H5L.SE = TEST2.H5L.SE
149 TEST4.H5L.SE = TEST2.H5L.SE
150 TEST4.H5L.SE = TEST3.H5L.SE
151 SOME-REALM6.US = SOME-REALM5.FR
152 SOME-REALM7.UK = SOME-REALM6.US
153 SOME-REALM7.UK = SOME-REALM5.FR
154 SOME-REALM8.UK = SOME-REALM6.US
156 H4.H2.TEST.H5L.SE = {
157 H1.TEST.H5L.SE = H3.H2.TEST.H5L.SE
158 H1.TEST.H5L.SE = H2.TEST.H5L.SE
159 H1.TEST.H5L.SE = TEST.H5L.SE
161 TEST.H5L.SE = H3.H2.TEST.H5L.SE
162 TEST.H5L.SE = H2.TEST.H5L.SE
164 H2.TEST.H5L.SE = H3.H2.TEST.H5L.SE