How to perform Remote Execution in Red Hat Satellite 6 using Kerberos.

Environment

• Red Hat Satellite 6.11 and above versions
• Identity Management ( IPA )

Issue

• How to perform Remote Execution in Red Hat Satellite 6 using kerberos Authentication.

Resolution

• To install and enable Kerberos authentication for remote execution, enter the following command:

# satellite-installer --scenario satellite \
--foreman-proxy-plugin-remote-execution-ssh-ssh-kerberos-auth true

• Now, Copy the foreman-proxy key to the content hosts ( There is no need of copying key for specific user)
• Configure a user account which should get reflected over the Red Hat Satellite and Content host, where remote execution has to be performed.
• Get the ticket for that specific user

# kinit <ldapuser>

The ticket details can be checked using the below command.

# klist 

• The user which is being used, should have access on Red Hat Satellite and Content hosts.

# getent passwd <ldapuser>

• For more information on setting up the Remote Execution with the Kerberos Authentication refer the Official Red Hat DocumentationKerberos in Red Hat Satellite.

For more KB articles/solutions related to Red Hat Satellite 6.x Remote Execution Issues, please refer to the Red Hat Satellite Consolidated Troubleshooting Article for Red Hat Satellite 6.x Remote Execution Issues

This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.