Mikkel Kruse Johnsen <[EMAIL PROTECTED]> writes: > All of this is checked. If I do the same with a user not containing a > dot "[EMAIL PROTECTED]" then it works. So it is because there is a dot in my > name.
You're being bitten by the code that tries to convert Kerberos v5 principal names to the Kerberos v4 convention used by AFS. /* * If the first part of the name_string contains a dot, punt since * then we can't see the diffrence between the kerberos 5 * principals foo.root and foo/root later in the fileserver. */ if (strchr(decr_part.cname.name_string.val[0], '.') != NULL) goto bad_ticket; (rxkad/ticket5.c). I'm afraid you might be out of luck, at least with the current version of AFS, unless you patch this code and remove this check in your file servers. -- Russ Allbery ([EMAIL PROTECTED]) <http://www.eyrie.org/~eagle/> _______________________________________________ OpenAFS-info mailing list OpenAFS-info@openafs.org https://lists.openafs.org/mailman/listinfo/openafs-info