Commit 17d0a0a 1 parent 4501849 commit 17d0a0a Copy full SHA for 17d0a0a
File tree 2 files changed +3
-2
lines changed
2 files changed +3
-2
lines changed Original file line number Diff line number Diff line change 1
1
---
2
- # Authentication for Kerberos-based Realms
2
+ # Authentication for Kerberos-based Realms. This will be used to get the DNS of the domain.
3
3
:realm: EXAMPLE.COM
4
4
5
5
# Kerberos pricipal used to authenticate against Active Directory
8
8
# Path to the keytab used to authenticate against Active Directory
9
9
:keytab_path: /etc/foreman-proxy/realm_ad.keytab
10
10
11
- # FQDN of the Domain Controller
11
+ # Optional: Only use a specific domain controller. This will disable DNS based dc discovery.
12
12
:domain_controller: dc.example.com
13
13
14
14
# Optional: OU where the machine account shall be placed
Original file line number Diff line number Diff line change @@ -88,6 +88,7 @@ def radcli_connect
88
88
# Connect to active directory
89
89
conn = Adcli ::AdConn . new ( @domain )
90
90
conn . set_domain_realm ( @realm )
91
+ # Directly connect to the domain controller if specified, skip the SRV lookup
91
92
conn . set_domain_controller ( @domain_controller ) unless @domain_controller . nil?
92
93
conn . set_login_ccache_name ( '' )
93
94
conn . connect
You can’t perform that action at this time.
0 commit comments