Implement support for managed Active Directory keytabs

This version implements Active Directory as the store for keytabs. The interface to Active Directory uses a combination of direct LDAP queries and the msktutil utility. This version does not support the wallet unchanging flag. Unchanging requires that a keytab be retrieved without changing the password/kvno which is not supported by msktutil.
author: Bill MacAllister <whm@dropbox.com> 2015-12-03 00:27:33 +0000
committer: Bill MacAllister <whm@dropbox.com> 2015-12-03 00:27:33 +0000
commit: 0eb853eb2ef7e7063c0219ce2cbd1e239d5579b7 (patch)
tree: 3aec07d547fdecb771533d1c9d5ad88a16291dca /perl/lib/Wallet/Kadmin.pm
parent: 6b7b9a29d20a65712061648404bbc6f1be5cacee (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/perl/lib/Wallet/Kadmin.pm b/perl/lib/Wallet/Kadmin.pm
index 65a5700..cb3bd47 100644
--- a/perl/lib/Wallet/Kadmin.pm
+++ b/perl/lib/Wallet/Kadmin.pm
@@ -69,6 +69,9 @@ sub new {
     } elsif (lc ($Wallet::Config::KEYTAB_KRBTYPE) eq 'heimdal') {
         require Wallet::Kadmin::Heimdal;
         $kadmin = Wallet::Kadmin::Heimdal->new;
+    } elsif (lc ($Wallet::Config::KEYTAB_KRBTYPE) eq 'ad') {
+        require Wallet::Kadmin::AD;
+        $kadmin = Wallet::Kadmin::AD->new;
     } else {
         my $type = $Wallet::Config::KEYTAB_KRBTYPE;
         die "unknown KEYTAB_KRBTYPE setting: $type\n";
author	Bill MacAllister <whm@dropbox.com>	2015-12-03 00:27:33 +0000
committer	Bill MacAllister <whm@dropbox.com>	2015-12-03 00:27:33 +0000
commit	0eb853eb2ef7e7063c0219ce2cbd1e239d5579b7 (patch)
tree	3aec07d547fdecb771533d1c9d5ad88a16291dca /perl/lib/Wallet/Kadmin.pm
parent	6b7b9a29d20a65712061648404bbc6f1be5cacee (diff)