On Tue, Jun 13, 2006 at 11:17:35AM -0400, Jeffrey Hutzelman wrote: > > I'd suggest looking at the kadmind log and/or attaching strace to the > running strace to see what file it's trying to access that is prohibited by > policy. Then adjust the policy to correct the problem.
As an aside, Solaris 10 has a nice utility called ppriv which shows information about the privileges that a running program is missing. I used this to determine which priv. to grant to gpg instead of just allowing it to run setuid root. -- Will Fiveash Sun Microsystems Inc. Austin, TX, USA (TZ=CST6CDT) ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos