Am 08.05.2012 15:03, schrieb Berthold Cogel: > Am 07.05.2012 18:16, schrieb Greg Hudson: >> On 05/07/2012 11:38 AM, Berthold Cogel wrote: >>> -rw------- 1 root root 128 May 7 16:09 service.keyfile >> >>> [root@hydra krb5kdc]# kadmin.local >>> kadmin.local: unable to get default realm >> >> I'm not sure why kadmin.local wouldn't be reading your krb5.conf file >> (partly because krb5 1.6 was a long time ago). Does strace show it >> trying to open anything other than kdc.conf? >> > > At least I've got this one sorted out... arrgh... > > > kdb5_ldap_util is reading both kdc.conf and krb5.conf. But it searches > krb5.conf for the backend definitions. In a book I found the hint to set > KRB5_CONFIG to kdc.conf. And I missed the 'unset' statement. Sorry... > Now kadmin.local behaves perfectly for this case.
this workarround is also described here: http://datwww.mit.edu/menelaus.mit.edu/kerberos/32700 and the problem should be fixed in 1.9 according to http://datwww.mit.edu/menelaus.mit.edu/kerberos/32719 ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos