# discourage MIT Kerberos extras from clobbering CSAIL additions to this file 
#NOMODIFY

[domain_realm]
        .mit.edu = ATHENA.MIT.EDU
        mit.edu = ATHENA.MIT.EDU
        .csail.mit.edu = CSAIL.MIT.EDU
        csail.mit.edu = CSAIL.MIT.EDU

[libdefaults]
        default_realm = CSAIL.MIT.EDU
        noaddresses = TRUE
        forwardable = true
        proxiable = true
        renew_lifetime = 1209600
        allow_weak_crypto = yes       

[realms]

        ATHENA.MIT.EDU = {
                kdc = kerberos.mit.edu.:88
                kdc = kerberos-1.mit.edu.:88
                kdc = kerberos-2.mit.edu.:88
                admin_server = kerberos.mit.edu.
                default_domain = mit.edu
        }

        CSAIL.MIT.EDU = {
                kdc = kerberos-1.csail.mit.edu
                kdc = kerberos-2.csail.mit.edu
                admin_server = kerberos.csail.mit.edu.
                default_domain = csail.mit.edu
        }

[v4 realms]
        ATHENA.MIT.EDU = {
                kdc = kerberos.mit.edu.
                kdc = kerberos-1.mit.edu.
                kdc = kerberos-2.mit.edu.
                admin_server = kerberos.mit.edu.
                default_domain = mit.edu
                string_to_key_type = mit_string_to_key
        }

[v4 domain_realm]
        .mit.edu = ATHENA.MIT.EDU
        mit.edu = ATHENA.MIT.EDU