"Adam Chlipala" <[EMAIL PROTECTED]> writes: > So why is there a "domtool.deleuze.hcoop.net" user now owning > /etc/keytabs/domtool.keytab?
Who owned it before? Who is supposed to own it? According to "ls -ln" it belongs to user 1050, and its ctime predates the move to libnss-ptdb, so I can only assume that it was created by some user whom ldap thinks is "user 1050". If that is not "domtool.deleuze.hcoop.net", then it means that we had a userid inconsistency between pts and ldap before switching to pts-only for numeric userids. > I thought it was a feature, not a bug, to have a single global > domtool user. Yes, although if "domtool.deleuze.hcoop.net" isn't the one you want, we can change that. > If the collected AFS wisdom of the admins dicates that this is the > right thing to do, how can I 'sudo' to this user or otherwise get a > process into a context where it can read the keytab? Well, "sudo su domtool.deleuze.hcoop.net" works for me. Just so we're on the same page, could you explain how you'd like this to work so I can make sure that it's working that way? - a -- PGP/GPG: 5C9F F366 C9CF 2145 E770 B1B8 EFB1 462D A146 C380 _______________________________________________ HCoop-SysAdmin mailing list [email protected] http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
