> AFS token passing between two clients seems fine, but it seems
> to
> require /etc/srvtab file and rcmd principal in the ka database
> (not
> PTDB). Creation of /etc/srvtab file is problematic. ksrvutil in
> kth4
> distribution appears to generate keys that are different from
> those
> created by kas create. (Tried all combinations of -r and -c
> options in
> ksrvutil). Resorted to creating the key with "kas stringtokey,"
> inserting the key in kadb with "kas setkey" and creating
> /etc/srvtab
> "by hand".
We use 3.4 Kaservers, and kth-krb, and to make a rcmd principal we just type:
client-> # /usr/athena/sbin/ksrvutil -c it.kth.se add
Name> rcmd.hostname
Realm> blank
Version> 0
Do you really, blabla (y/n) y
and then the password twice.
----
After that, from any machine:
kas create rcmd.hostname -admin myadmin
myadmin's password: s3cr3t
initital password: h3ml1s
again: h3ml1s
Never had any problems at our place with that. (using 3.4 though.)
--
"Backwards compatible" means: "if it isn't backwards, it's not compatible."
Http://www.it.kth.se/~jj
