vRealize Orchestrator - Kerberos Configuration File

calendar Mar 16, 2020 · 1 min read · Homelab Kerberos krb5.conf VMware vRealize vRO vRO 7 vRO 8  ·
Share on: linkedin copy

To configure Kerberos authentication with vRealize Orchestrator (vRO), the krb5.conf file must be set up for your specific environment and the domain you are connecting to. The location of the krb5.conf file is different for different versions and deployments of vRO, so the below list shows the locations of the krb5.conf file for vRO 7 vs vRO 8 and standalone deployments vs embedded with vRA deployments.

In vRO 7.x standalone, the krb5.conf file is located in /usr/java/jre-vmware/lib/security/krb5.conf
In vRO 8.x standalone, the krb5.conf file is located in /data/vco/usr/lib/vco/app-server/conf/krb5.conf

In vRO 7.x embedded with vRA, the krb5.conf file is located in /etc/krb5.conf
In vRO 8.x embedded with vRA, the krb5.conf file is located in /data/vco/usr/lib/vco/app-server/conf/krb5.conf

If you have changed the krb5.conf file, the appliance will need to be restarted for the changes to take effect.

To configure Kerberos and the krb5.conf file, follow one of the many blogs online or follow the below example krb5.conf file.

 1[libdefaults]
 2 default_realm = HOMELAB.LOCAL
 3 udp_preferences_limit = 1
 4 [realms]
 5 HOMELAB.LOCAL = {
 6     kdc = dc-1.HOMELAB.LOCAL
 7     default_domain = HOMELAB.LOCAL
 8 }
 9 [domain_realm]
10 .HOMELAB.LOCAL=HOMELAB.LOCAL
11 HOMELAB.LOCAL=HOMELAB.LOCAL

VMware documentation is now also available here.

comments powered by Disqus