diff options
Diffstat (limited to 'src/libtdeldap.cpp')
-rw-r--r-- | src/libtdeldap.cpp | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/src/libtdeldap.cpp b/src/libtdeldap.cpp index 37cc76b..772596a 100644 --- a/src/libtdeldap.cpp +++ b/src/libtdeldap.cpp @@ -4825,6 +4825,21 @@ int LDAPManager::writeClientKrb5ConfFile(LDAPClientRealmConfig clientRealmConfig stream << "# All changes will be lost!\n"; stream << "\n"; + // Appdefaults + stream << "[appdefaults]\n"; + if (realmList.begin() != realmList.end()) { + LDAPRealmConfig realmcfg = *realmList.begin(); + TQString ldap_certfile = LDAP_CERT_FILE; + TQString ldap_crlfile = LDAP_CERTREVOC_FILE; + ldap_certfile.replace("@@@ADMINSERVER@@@", realmcfg.admin_server); + ldap_crlfile.replace("@@@ADMINSERVER@@@", realmcfg.admin_server); + + stream << " pkinit_anchors = FILE:" << ldap_certfile << "\n"; + stream << " pkinit_revoke = FILE:" << ldap_crlfile << "\n"; + } + stream << " pkinit_require_crl_checking = true\n"; + stream << "\n"; + // Defaults stream << "[libdefaults]\n"; stream << " ticket_lifetime = " << clientRealmConfig.ticketLifetime << "\n"; |