Greetings,
I'm in the process of helping with a migration from "old style" domain authentication for Samba to integrating it with ADS, using Samba 3.0.x. Samba is running on RedHat Linux (SeaWolf), with a 2.4.28 kernel. We're using MIT Kerberos, version 1.3.5, compiled from source using "./configure, make, and make install". All libraries are in /usr/local/lib.
My /etc/krb5.conf file contains the following:
[logging] default = FILE:/var/log/krb5libs.log kdc = FILE:/var/log/krb5kdc.log admin_server = FILE:/var/log/kadmind.log
[libdefaults] ticket_lifetime = 24000 default_realm = CORP.NEAPCO.COM default_tkt_enctypes = DES-CBC-MD5 default_tgs_enctypes = DES-CBC-MD5 ccache_type = 2
[realms] CORP.NEAPCO.COM = { kdc = dc1.corp.neapco.com:88 admin_server = dc1.corp.neapco.com }
[domain_realm] .corp.neapco.com = CORP.NEAPCO.COM
Which, as far as I can tell, seems reasonable. dc1.corp.neapco.com resolves to the correct IP address, and reverse DNS is working for it as well.
I am unable to run kinit, or any other Kerberos utility, for that matter. kinit simply segfaults, and does not dump core, and kadmin generates "Authenticating as principal jnugent/[EMAIL PROTECTED] with password." and then segfaults as well. There is nothing logged, obviously.
I'm not really sure what to try at this point. If anyone has suggestions, or would like more information, please let me know.
Regards,
Jason
---------------------------------- Jason Nugent, BSc [EMAIL PROTECTED] http://malhavoc.homeunix.com
________________________________________________ Kerberos mailing list [EMAIL PROTECTED] https://mailman.mit.edu/mailman/listinfo/kerberos