From 4655d1f53d07f3d1a07b2022913c0fd370faebd6 Mon Sep 17 00:00:00 2001
From: Cullum Smith <cullum@sacredheartsc.com>
Date: Sun, 8 Dec 2024 01:46:33 -0500
Subject: laptop fixes

---
 files/etc/hosts.roadwarrior_laptop | 2 ++
 files/etc/krb5.conf.common         | 6 +++---
 files/etc/krb5.conf.idm_server     | 6 +++---
 3 files changed, 8 insertions(+), 6 deletions(-)
 create mode 100644 files/etc/hosts.roadwarrior_laptop

(limited to 'files/etc')

diff --git a/files/etc/hosts.roadwarrior_laptop b/files/etc/hosts.roadwarrior_laptop
new file mode 100644
index 0000000..f2940ed
--- /dev/null
+++ b/files/etc/hosts.roadwarrior_laptop
@@ -0,0 +1,2 @@
+::1        localhost  localhost.${domain} ${BOXCONF_HOSTNAME}.${domain} ${BOXCONF_HOSTNAME}
+127.0.0.1  localhost  localhost.${domain} ${BOXCONF_HOSTNAME}.${domain} ${BOXCONF_HOSTNAME}
diff --git a/files/etc/krb5.conf.common b/files/etc/krb5.conf.common
index 7eed6d2..7fa50c3 100644
--- a/files/etc/krb5.conf.common
+++ b/files/etc/krb5.conf.common
@@ -6,14 +6,14 @@
   permitted_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96
   default_keytab_name = FILE:/var/krb5/user/%{euid}/keytab
   default_client_keytab_name = FILE:/var/krb5/user/%{euid}/client.keytab
+  forwardable = true
+  ticket_lifetime = ${krb5_ticket_lifetime}
+  renew_lifetime = ${krb5_renew_lifetime}
 
 [appdefaults]
   pam = {
     minimum_uid = 1000
     ccache = FILE:/tmp/krb5cc_%u_XXXXXX
-    forwardable = true
-    ticket_lifetime = ${krb5_ticket_lifetime}
-    renew_lifetime = ${krb5_renew_lifetime}
   }
 
 [realms]
diff --git a/files/etc/krb5.conf.idm_server b/files/etc/krb5.conf.idm_server
index 3f326ad..5d4d1a0 100644
--- a/files/etc/krb5.conf.idm_server
+++ b/files/etc/krb5.conf.idm_server
@@ -4,14 +4,14 @@
   dns_lookup_realm = false
   allow_weak_crypto = false
   permitted_enctypes = aes256-cts-hmac-sha1-96 aes128-cts-hmac-sha1-96
+  forwardable = true
+  ticket_lifetime = ${krb5_ticket_lifetime}
+  renew_lifetime = ${krb5_renew_lifetime}
 
 [appdefaults]
   pam = {
     minimum_uid = 1000
     ccache = FILE:/tmp/krb5cc_%u_XXXXXX
-    forwardable = true
-    ticket_lifetime = ${krb5_ticket_lifetime}
-    renew_lifetime = ${krb5_renew_lifetime}
   }
 
 [realms]
-- 
cgit v1.2.3