LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page kerberos problems
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 11-17-2008, 09:40 PM   #1
xKintaro
LQ Newbie
 
Registered: Sep 2005
Location: Australia.
Distribution: CentOS
Posts: 25

Rep: Reputation: 15
kerberos problems

I have been trying to get my Linux machine on an active directory domain. I really only know directory servers as black boxes. I've been following this howto to the letter...

http://wiki.samba.org/index.php/Samb...tive_Directory

I've ran into a problem, when I try to do kinit as root I get problems.

This is what my /etc/krb5.conf looks like.
Code:
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log

[libdefaults]
default_realm = acropolis.local
dns_lookup_realm = false
dns_lookup_kdc = false
ticket_lifetime = 24h
forwardable = yes

[realms]
acropolis.local = {
   kdc = delta.acropolis.local
   admin_server = delta.acropolis.local
   default_domain = acropolis.local
}

[domain_realm]
.kerberos.server = acropolis.local
acropolis.local = acropolis.local

[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf

[appdefaults]
pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forwardable = true
   krb4_convert = false
}
This is what the kinit output looks like...
Code:
root@empirelin:~# kinit
kinit(v5): Cannot resolve network address for KDC in realm acropolis.local while getting initial credentials
All these hostnames are working on my DNS system...
Code:
root@empirelin:~# host acropolis.local
acropolis.local has address 10.0.0.1
acropolis.local has address 10.0.0.2
acropolis.local has address 10.0.1.2
acropolis.local has address 192.168.1.14
root@empirelin:~# host delta.acropolis.local
delta.acropolis.local has address 10.0.0.1
delta.acropolis.local has address 192.168.1.14
delta.acropolis.local has address 10.0.3.1
I have no idea, delta is my ADS though, can anyone suggest anything?
 
Old 11-28-2008, 02:53 PM   #2
ugge
Senior Member
 
Registered: Dec 2000
Location: Gothenburg, SWEDEN
Distribution: OpenSUSE 10.3
Posts: 1,028

Rep: Reputation: 45
I looked at the howto and noticed the following notice

"ALERT! Capitals are important here. Without capitalization of your realms and .domain_realm, kerberos won't be able to connect."

Check the capitalization of your realms in /etc/krb5.conf
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
kerberos paul_mat Linux - Networking 0 05-10-2006 12:02 AM
kerberos/ldap login -> samba problems mesepher Linux - Software 6 02-28-2006 08:33 AM
Samba, Kerberos and ADS problems deadlock Linux - Networking 0 01-26-2006 11:27 AM
RHEL4 - problems upgrading kerberos rtkaczyk Linux - Software 1 01-25-2006 11:40 AM
kerberos denning Slackware 1 11-02-2005 07:04 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 02:08 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration