never knew this, what is the SPN postix/sasl needs?
and a simple way to make the client work, setup a samba client, if setup
correctly, samba wil refres the keytab file.
if someone want info on this, i can answere monday again.
greetz,
louis
> Op 1 jan. 2016 om 21:17 heeft Viktor Dukhovni
>
the SPN would be smtp/host.domain.tld@REALM.
the primary is smtp
the instance is the hostname of the machine, or if in a load balanced
environment, the name of the Virtual IP (VIP) that the clients connect
to. if you are load balancing, you create one keytab file, and
distribute that same exa
On Sat, Jan 02, 2016 at 12:00:23PM -0500, Brendan Kearney wrote:
> the SPN would be smtp/host.domain.tld@REALM.
That's what SMTP clients expect for an SMTP service at "host.domain.tld",
in Kerberos realm "REALM".
> how does one tell postfix/submission what principal to use, when in a load
> bala
On Sat, Jan 2, 2016 at 10:30 AM, Viktor Dukhovni wrote:
> On Sat, Jan 02, 2016 at 12:00:23PM -0500, Brendan Kearney wrote:
>
> > Victor's script gets a Kerberos ticket every hour. it does not renew
> the
> > existing ticket, it seems. my tickets are valid for 10 hours, and
> renewable
> > for
