[logging]
        default = FILE:/var/log/krb5libs.log
        kdc = FILE:/var/log/krb5kdc.log
        admin_server = FILE:/var/log/kadmind.log

[libdefaults]
        default_realm = DOMAIN.RU
        default_keytab_name = /etc/apache2/wiki.keytab
        ticket_lifetime = 24h
        forwardable = yes

# The following krb5.conf variables are only for MIT Kerberos.
        kdc_timesync = 1
        ccache_type = 4
        forwardable = true
        proxiable = true

# The following libdefaults parameters are only for Heimdal Kerberos.
        fcc-mit-ticketflags = true

[realms]
        DOMAIN.RU = {
        kdc = dc1.domain.ru
        kdc = dc2.domain.ru
        kdc = dc3.domain.ru
        admin_server = dc3.domain.ru
        default_domain = domain.ru
        }

[domain_realm]
        wiki = DOMAIN.RU
        wiki.domain.ru = DOMAIN.RU
        .domain.ru = DOMAIN.RU
        domain.ru = DOMAIN.RU

[appdefaults]
        pam = {
        debug = false
        ticket_lifetime = 36000
        renew_lifetime = 36000
        forwardable = true
        krb4_convert = false
}