Active Directory with pam_krb5 getpwnam failed for <user>
Hello, I'm trying to get my Linux box bound with kerberos... For my /etc/krb5.conf I have:
Code:
DOMAIN = { Code:
.domain.com = KDC-SERVER.DOMAIN.COM Code:
workgroup = DOMAIN Code:
passwd: compat winbind Code:
(login:auth): user Administrator authenticated as Administrator@DOMAIN |
I don't have a kerberos client handy but your "[domain_realm]" section may be wrong, from memory I think it should be:
Code:
.domain.com = DOMAIN.COM I'm not sure what distro you're running but when configuring authentication by hand it can be tricky to get everything right, I'd recommend using the 'authconfig' command if available or a graphical tool. |
Hmm I'll try that thanks, I'm running Debian 6 btw. Any other thoughts on what could possibly be wrong?
|
Sorry, I'm not a fan of Samba .. I usually go with kerberos/ldap/sssd combo. Maybe have a read here and see if you missed anything .. p.s. you missed scrubbing a domain name in smb.conf :)
|
Thanks for your help, I tried making that change in krb5.conf and nothing changed. :( I checked my pam.d conf files and those seem ok too. I guess I'll try compiling pam_krb5 from the latest source tarball to see if the binary deb is foobar somehow. Can't hurt eh?
|
I'd find it highly unlikely .. chances are about %99.99 the config is wrong somewhere, it's just a matter of finding where :)
|
All times are GMT -5. The time now is 06:15 AM. |