Kerberos Server Version 3.12 Administrator's Guide
Configuring the Kerberos Server with LDAP
Configuration Files for LDAP Integration
Chapter 676
same; else the Kerberos server will not connect to the LDAP server.
Table 6-2 provides a detailed description of the various parameters in the
krb5_ldap.conf file.
Table 6-2 krb5_ldap.conf File Format
Parameter Description
ldap_enabled This line indicates whether you
have enabled LDAP.
1 indicates that you have enabled
LDAP and 0 indicates that you
have not enabled LDAP as the
backend database.
directory_server This line indicates a space
separated list of LDAP Servers.
Example: fox.bambi.com:389
deer.bambi.com
base_dn_for_search This line indicates the default
base DN for search is the root of
the directory tree on the Directory
server, where the Kerberos server
searches for kerberos principals.
Example: ou=People,
o=bambi.com
default_princ_subtree The default principal subtree DN
is where all Kerberos principals
are added by default, if no LDAP
entry is specified while creating
the kerberos principal. The
default principal subtree DN must
be located under the default base
DN for search functionality.
Example: ou=people, o=bambi.com