From ffa65c885b78a8d783f9e8cd51cf7c0b751207f9 Mon Sep 17 00:00:00 2001
From: Timothy Pearson <kb9vqf@pearsoncomputing.net>
Date: Mon, 4 Jun 2012 02:43:34 -0500
Subject: New realm now functions almost fully

---
 confskel/heimdal/kdc.conf | 16 ++++++++++------
 1 file changed, 10 insertions(+), 6 deletions(-)

(limited to 'confskel/heimdal/kdc.conf')

diff --git a/confskel/heimdal/kdc.conf b/confskel/heimdal/kdc.conf
index 62d6fb3..96f3a8d 100644
--- a/confskel/heimdal/kdc.conf
+++ b/confskel/heimdal/kdc.conf
@@ -1,8 +1,12 @@
 [kdc]
-logging = FILE:/var/log/heimdal-kdc.log
-enable-pkinit = yes
-pki-identity = FILE:/etc/trinity/ldap/tde-ca/public/@@@KDCSERVER@@@.pki.crt,/etc/trinity/ldap/tde-ca/private/@@@KDCSERVER@@@.pki.key
-pki-anchors = FILE:/etc/trinity/ldap/tde-ca/anchors/tdeca.pem
-pki-allow-proxy-certificate = false
-acl_file = /etc/heimdal-kdc/kadmind.acl
+    logging = FILE:/var/log/heimdal-kdc.log
+    enable-pkinit = yes
+    pkinit_identity = FILE:/etc/trinity/ldap/tde-ca/public/@@@KDCSERVER@@@.pki.crt,/etc/trinity/ldap/tde-ca/private/@@@KDCSERVER@@@.pki.key
+    pkinit_anchors = FILE:/etc/trinity/ldap/tde-ca/anchors/tdeca.pem
+    pkinit_allow-proxy-certificate = false
+    acl_file = /etc/heimdal-kdc/kadmind.acl
 
+    database = {
+        dbname = ldap:@@@REALM_DCNAME@@@
+        acl_file = /etc/heimdal-kdc/kadmind.acl
+    }
\ No newline at end of file
-- 
cgit v1.2.1