Hi, I am trying to create a suitably restricted user for use with configuration automation (SaltStack ). My line looks like the following :
saltstack/ad...@example.com ADMCIL nfs/*@EXAMPLE.COM I have edited kadm5.acl and restarted kadmind, however list_princs returns a list of all principals, not just nfs/* ? If I remove the target column (i.e. saltstack/ad...@example.com ADMCIL) and restart kadmind, then ADMCIL operates as expected (blocks list_princs entirely). What am I missing ? Laura ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos
