Greetings,
I'm in the process of helping with a migration from old style domain
authentication for Samba to integrating it with ADS, using Samba
3.0.x. Samba is running on RedHat Linux (SeaWolf), with a 2.4.28
kernel. We're using MIT Kerberos, version 1.3.5, compiled from source
using
I am one of many administrators for a network of 50 machines running
MIT Kerberos on Solaris. Recently, another administrator installed a
Cisco VPN Magic Box that supposedly uses Kerberos authentication, but
won't work unless preauthentication is turned off. With
preauthentication turned off for
If anyone has suggestions
Last time something like this happened to me
it was because the java versions were in the
path ahead of the real versions.
Bob
Kerberos mailing list [EMAIL PROTECTED]
In article [EMAIL PROTECTED],
[EMAIL PROTECTED] (Rachel Elizabeth Dillon) wrote:
I am one of many administrators for a network of 50 machines running
MIT Kerberos on Solaris. Recently, another administrator installed a
Cisco VPN Magic Box that supposedly uses Kerberos authentication, but
On Tue, Dec 07, 2004 at 12:53:25PM -0800, Donn Cave wrote:
In case it may help, you can find more detail about the
preauthentication failure in the syslog output from the KDC.
The error message can be a little misleading - I believe
No such file or directory really means that the key was
Thanks for the information. Does MIT intend to implement the standard
once it's finalized?
-Christopher
-Original Message-
From: Sam Hartman [mailto:[EMAIL PROTECTED]
Sent: Friday, December 03, 2004 10:42 AM
To: Nebergall, Christopher
Cc: [EMAIL PROTECTED]
Subject: Re: PKINIT Standard
First of all, thank to all of the great input find here !!
Before adding beta users to my kerberos/ldap server, I still have some
problems remaining.
Linux users do not halt or log off all the time (because of stuff running
in consoles for example). So is there a way (pam_krb5 ? ) to renew TGT
Sorry I forgot to add a subject, so I send it again :
First of all, thank to all of the great input find here !!
Before adding beta users to my kerberos/ldap server, I still have some
problems remaining.
Linux users do not halt or log off all the time (because of stuff running
in consoles for
First of all, thank to all of the great input find here !!
Before adding beta users to my kerberos/ldap server, I still have some
problems remaining.
Linux users do not halt or log off all the time (because of stuff running
in consoles for example). So is there a way (pam_krb5 ? ) to renew TGT
Help anyone,
We are using a Windows domain controller as a KDC and we are trying to
authenticate a Solaris 9.0 OS box using Kerberos. The following is the
command we use to create the keytab file:
ktpass -princ host/[EMAIL PROTECTED] -mapuser dean19 -pass * -out
c:\dean19.keytab
Once we create
The stock RedHat module does not appear to implement the
refresh_creds properly[*], rather it gets tickets into a new
credentials cache, which is *effectively* unavailable from the
user's standpoint b/c the KRB5CCNAME variable is not updated.
The pam_krb5 module available from sourceforge does
--On Tuesday, December 07, 2004 20:18:28 + Rachel Elizabeth Dillon
[EMAIL PROTECTED] wrote:
1. What does preauth _actually_ do? From some reading, I believed it to
be based on clock skew, and fixed the clock skew between the VPN box
and the Kerberos server, but preauth still
[...]
checking whether compile_et is useful... yes
checking which version of subsystem package to use... system
checking whether system ss package works... configure: error: cannot run
test program
In config.log file :
[...]
configure:2805: checking whether compile_et is useful
configure:2836:
It would help us to diagnose your problem if you were to include the
exact command line which you provided to the configure script, as well
as details of your OS type and version.
---Tom
Kerberos mailing list [EMAIL PROTECTED]
On Tuesday, December 07, 2004 16:26:39 -0600 David A Flores
[EMAIL PROTECTED] wrote:
Help anyone,
We are using a Windows domain controller as a KDC and we are trying to
authenticate a Solaris 9.0 OS box using Kerberos. The following is the
command we use to create the keytab file:
ktpass
15 matches
Mail list logo