Learn more about these different git repos.
Other Git URLs
In an Active Directory domain, the keytabs are rotated every 30 days by default. Some tools, especially 3rd party ones, would even disable hosts that haven't rotated their keytabs recently and that is especially true now that the bring-your-own-device is so widely used. See https://blogs.technet.com/b/askds/archive/2009/02/15/test2.aspx?Redirected=true for more details.
Ondrej Kos wrote a standalone deamon as part of his bc thesis that is able to rotate the host keytabs. As part of the AD integration effort, we should incorporate that deamon into the SSSD's AD provider.
This is a duplicate of the #1041
Couple notes though based on the discussion we had about Ondrej's project
Please add if I missed something.
Replying to [comment:1 dpal]:
Ah, sorry, you're right. I guess we all missed #1041 on the meeting yesterday. I've copied your comment into #1041 and I'm going to mark this ticket as a duplicate.
resolution: => duplicate status: new => closed
Metadata Update from @jhrozek: - Issue set to the milestone: NEEDS_TRIAGE
SSSD is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in SSSD's github repository.
This issue has been cloned to Github and is available here: - https://github.com/SSSD/sssd/issues/2553
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Login to comment on this ticket.