Distributor ID: Debian
Description: Debian GNU/Linux 6.0.5 (squeeze)
Release: 6.0.5
Codename: squeeze
I'm a noob but catch up really quick.
I followed this guide to setting up the kerberos and ldap:
http://www.rjsystems.nl/en/2100-d6-k...p-provider.php
and the ssh part is pretty straight forward so I guess my first question is..., is the guide I'm following correct for the kerberos and ldap installation and configuration?
here I will post some of my problems so you can get questions going and lead me to my mistake please.
Im not really interested in the gssapi, certificates or what not, all I'm trying to do is create a user in kerberos via kadmin and be able to access such server via ssh..., and eventually get tacacs running using kerberos for authentication.
root@zirconium:/etc/pam.d# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal:
avargas@TEST.COM
Valid starting Expires Service principal
08/03/12 10:54:01 08/04/12 10:54:01 krbtgt/TEST.COM@TEST.COM
root@zirconium:/etc/pam.d# kadmin -p admin
Authenticating as principal admin with password.
Password for
admin@TEST.COM:
kadmin: listprincs
K/M@TEST.COM
krbtgt/TEST.COM@TEST.COM
kadmin/admin@TEST.COM
kadmin/changepw@TEST.COM
kadmin/history@TEST.COM
kadmin/zirconium.test.com@TEST.COM
admin@TEST.COM
ldap/zirconium.test.com@TEST.COM
avargas@TEST.COM
kadmin: exit
root@zirconium:/etc/pam.d# users
root root
root@zirconium:/etc/pam.d# domainname -f
zirconium.test.com
root@zirconium:/etc/pam.d# domainname
test.com
root@zirconium:/etc/pam.d# dnsdomainname
test.com
root@zirconium:/etc/pam.d# hostname
zirconium
root@zirconium:/etc/pam.d#
avargas@10.10.10.10's password:
Permission denied, please try again.
avargas@10.10.10.10's password:
I am aware of ntp sync is important and I have not added the user using useradd cuz that would defeat the purpose and I will be able to log in using local created accounts.
root@zirconium:/home# ls /home
Please, I've been reading for like 2 weeks non-stop and apparently I'm messing up somewhere.., kindness and help..., no sarcasm please.
Thanks
Amalfy Vargas