diff options
| author | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2022-01-04 09:14:07 +0100 |
|---|---|---|
| committer | Mike Gabriel <mike.gabriel@das-netzwerkteam.de> | 2022-02-08 10:03:59 +0100 |
| commit | 01de0e5645039065c9f29b62c2973452ca59e565 (patch) | |
| tree | b6484cf132676e77c2452f05282f8fde5f33d6b6 /share/debian-edu-config/tools/gosa-modify-host-itzks | |
| parent | 75672c80d3b1f2bc8a45d960d61d9496c5bfae20 (diff) | |
| download | itzks-systems-01de0e5645039065c9f29b62c2973452ca59e565.tar.gz itzks-systems-01de0e5645039065c9f29b62c2973452ca59e565.tar.bz2 itzks-systems-01de0e5645039065c9f29b62c2973452ca59e565.zip | |
mainserver: Provide gosa-*-host hook script extension that collects Krb5 host keytabs of diskless workstation hosts in a separate folder and makes those (theoretically, if used) available to diskless workstations via SSH as unprivileged user.
Diffstat (limited to 'share/debian-edu-config/tools/gosa-modify-host-itzks')
| -rwxr-xr-x | share/debian-edu-config/tools/gosa-modify-host-itzks | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/share/debian-edu-config/tools/gosa-modify-host-itzks b/share/debian-edu-config/tools/gosa-modify-host-itzks index 9d053e6..a79000b 100755 --- a/share/debian-edu-config/tools/gosa-modify-host-itzks +++ b/share/debian-edu-config/tools/gosa-modify-host-itzks @@ -14,6 +14,11 @@ if ! LANG=C kadmin.local -q "get_principal host/$HOST.intern" 2>/dev/null | gre fi +# call DLW keytabs' update script (delay execution for 10s because GOsa² needs +# to write the NIS netgroup information first (this hook gets called between +# saving the host object to LDAP, but before updating the NIS netgroup settings). +( sleep 10; /usr/share/debian-edu-config/tools/update-dlw-krb5-keytabs-itzks ${@} ) & + # ITZkS: assure that host keytabs are readable by puppet chown :puppet /etc/debian-edu/host-keytabs/*.keytab chmod 0640 /etc/debian-edu/host-keytabs/*.keytab |