bunny-lab/docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Servers & Workflows/Linux/Automation/Puppet/Puppet Bolt.md

Browse Source
This commit is contained in:
Nicole Rappe
2024-11-14 21:58:34 -07:00
parent 1c7700ad9c
commit 8a485a0012
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
Servers & Workflows/Linux/Automation/Puppet/Puppet Bolt.md
View File

@ -135,7 +135,7 @@ We need to configure Kerberos to know how to reach the domain, this is achieved
default_realm = BUNNY-LAB.IO default_realm = BUNNY-LAB.IO
dns_lookup_realm = false dns_lookup_realm = false
dns_lookup_kdc = false dns_lookup_kdc = false
ticket_lifetime = 24h ticket_lifetime = 7d
forwardable = true forwardable = true
[realms] [realms]
@ -162,13 +162,13 @@ klist
``` ```
??? example "Example Output of `klist`" ??? example "Example Output of `klist`"
You should expect to see output similar to the following. Finding a way to ensure the Kerberos tickets live longer is still under research, as 24 hours is not exactly practical for long-term deployments. You should expect to see output similar to the following. Finding a way to ensure the Kerberos tickets live longer is still under research, as 7 days is not exactly practical for long-term deployments.
``` ```
[root@lab-puppet-01 bolt-lab]# klist [root@lab-puppet-01 bolt-lab]# klist
Ticket cache: FILE:/tmp/krb5cc_0 Ticket cache: FILE:/tmp/krb5cc_0
Default principal: nicole.rappe@BUNNY-LAB.IO Default principal: nicole.rappe@BUNNY-LAB.IO
Valid starting Expires Service principal Valid starting Expires Service principal
11/14/2024 21:19:44 11/15/2024 07:19:44 krbtgt/BUNNY-LAB.IO@BUNNY-LAB.IO 11/14/2024 21:57:03 11/15/2024 07:57:03 krbtgt/BUNNY-LAB.IO@BUNNY-LAB.IO
renew until 11/15/2024 21:19:40 renew until 11/21/2024 21:57:03
``` ```