- Log on to SoftNAS StorageCenter.
In the Storage Administration pane on the left, select Settings > Identity From within SoftNAS, navigate to Settings >Identity and Access Control > Kerberos.
- The Kerberos5 Configuration panel will be displayed.
- Enter the the full Active Directory server name in upper case in the Realm text entry box; e.g., YOURDOMAIN.COM, MYDOMAIN.LOCAL.
- Click the Update Configuration button.
- Enter the required information into the Default Configuration text boxes.
- Once done, click the Update Configuration button. This will update your /etc/krb5.conf file.
Verifying Kerberos is Functional
| Info |
|---|
| In the above example, |
| AD.BUURST. |
| QA is the full domain name. |
- Log in to a command shell using SSH, SoftNAS Console (VMware) or use the Command Shell.
- To access the command shell from within the SoftNAS UI,
- navigate to Settings > General System Settings, which will open a new window with access to the full Webmin console
- .
- Choose Others > Command Shell.
- Once in the command shell,
- issue the following
"kinit" is used to log in as the AD administrator. Note that for best results use the actual domain administrator, not a user with domain admin rights.
Enter the password for administrator@SOFTNAS.LOCAL:
| Panel | ||||||
|---|---|---|---|---|---|---|
| ||||||
| [root@softnas]# kinit -p administrator |
- command to login:
| Code Block | ||||
|---|---|---|---|---|
| ||||
kinit -p administrator |
List the Kerberos ticket, which proves you successfully logged into AD
| borderColor | black |
|---|---|
| bgColor | #f0f0f0 |
| borderStyle | solid |
using the following command:
Code Block language bash theme Eclipse klist
- You should see something like:
Panel borderColor black bgColor #f0f0f0 borderStyle solid Ticket cache: FILE:/tmp/krb5cc_0
Default principal: administrator@SOFTNAS.LOCAL
Valid starting Expires Service principal
01/21/13 17:26:12 01/22/13 03:26:20 krbtgt/SOFTNAS.LOCAL@SOFTNAS.LOCAL
renew until 01/22/13 17:26:12
- similar to the image to the right.
