Resource Type: netapp_kerberos_realm

Defined in:
lib/puppet/type/netapp_kerberos_realm.rb
Providers:
cmode

Overview

Kerberos realm configuration specifies the locations of Key Distribution Center (KDC) servers and administration daemons for the Kerberos realms of interest. When returned as part of the output, all elements of this typedef are reported, unless limited by a set of desired attributes specified by the caller.

Properties

  • ad_server_ip

    IP Address of the Active Directory Domain Controller (DC). This is a mandatory parameter if the kdc-vendor is ‘microsoft’.

  • ad_server_name

    Host name of the Active Directory Domain Controller (DC). This is a mandatory parameter if the kdc-vendor is ‘microsoft’

  • admin_server_ip

    IP address of the host where the Kerberos administration daemon is running. This is usually the master KDC. If this parameter is omitted, the IP address specified in kdc-ip is used. If specified, this should be the same as the kdc-ip if the kdc-vendor is ‘microsoft’.

  • admin_server_port

    The TCP port on the Kerberos administration server where the Kerberos administration service is running. The default for this parmater is 749.

  • clock_skew

    The clock skew in minutes is the tolerance for accepting tickets with time stamps that do not exactly match the host’s system clock. The default for this parameter is 5 minutes.

  • comment

    Comment

  • config_name

    Kerberos configuration name.

  • ensure (defaults to: present)

    The basic property that the resource should be in.

    Supported values:
    • present
    • absent
  • kdc_ip

    The vendor of the Key Distribution Centre (KDC) server. If the configuration uses a Microsoft Active Directory (AD) domain for authentication, this field should be ‘microsoft’.

  • kdc_port

    TCP port on the KDC to be used for Kerberos communication. The default for this parameter is 88.

  • kdc_vendor

    The vendor of the Key Distribution Centre (KDC) server. If the configuration uses a Microsoft Active Directory (AD) domain for authentication, this field should be ‘microsoft’.

  • password_server_ip

    IP address of the host where the Kerberos password-changing server is running. Typically, this is the same as the host indicated in the adminserver-ip. If this parameter is omitted, the IP address in kdc-ip is used.

  • password_server_port

    The TCP port on the Kerberos password-changing server where the Kerberos password-changing service is running. The default for this parameter is 464.

Parameters

  • name (namevar)

    Kerberos realm name.

  • provider

    The specific backend to use for this ‘netapp_kerberos_realm` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.