Does the admin_server have a failover facility? What funtion does admin_server provide?

Solution Unverified - Updated -

Issue

  • KDC can be set to multiple kerberos servers. what function or service does the kdc server provide? (Distribute the kerberos ticket?)

  • The admin_server cannot be set to multiple kerberos servers because it does not provide failover functionality. By default admin_server is the master kdc server.

  • What if the admin_server goes down ? What function or service does the admin_server provide? (In my mind, create key, modify key, manage principla)

  • If the admin_server went down, can the kerberos client also authenticate to kerber server(Maybe admin_server went down, there is another slave kerberos service which is not admin_server)?

  • If the admin_server went down, and the kerberos ticket was expired, can I re-generate the kerberos ticket?

  • If the admin_server went down, can a new client be added to kerberos server?

Environment

  • Red Hat Enterprise Linux
  • Kerberos
  • krb5.conf

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content