In this example, both the NFS server and KDC are running on the same CentOS 7 system. Both the server and client should have the ‘nfs-utils’ package installed.You should also already have a working NFS server and client setup.In order to use Kerberos for NFS, we must first have a KDC setup with a client joined to the realm.In order for Kerberos to function correctly, the following must first be configured on both servers. It is also our NFS client and will mount from the server above. Kerberos Client: 192.168.1.14 – This Linux client will request Kerberos tickets from the KDC.Kerberos Server (KDC): 192.168.1.13 – This Linux server will act as our KDC and serve out Kerberos tickets.Here is a list of our servers that we will be testing with, both are running CentOS 7. Studying for your RHCE certification? Checkout our RHCE video course over at Udemy which is 20% off when you use the code ROOTUSER. By default NFS is not very secure, there’s no real authentication and access is granted based on hostname or IP address, information is sent over the network in plain text, and it’s also fairly easy to fake your UID/GID.īy making use of Kerberos we can secure NFS as this provides authentication, encryption and integrity.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |