the answer for the first one is Yes. I got rid of the error by doing
"ksetup /addkdc realm host".
thanks
-peter
"Jeffrey Altman" <[EMAIL PROTECTED]> wrote in message
news:[EMAIL PROTECTED]
> peter huang wrote:
>> thanks so much for you help. I got rid of the ccache error from
>> gss_init_sec
Hi.
I'm trying to integrate Kerberos 5 (client) and OpenAFS, on AIX 5.2 ---
I did something, but I'd like to be sure about what I did before
rebooting. I use LDAP for user information (posixAccount, posixGroup).
In methods.cfg I have now:
AFS:
program = /usr/vice/etc/afs_dynamic_kerbau
Fixed it by using Heimdal instead, hurrah.
[EMAIL PROTECTED] (Robert Haycock) wrote in message news:<[EMAIL PROTECTED]>...
> Hi,
>
>
>
> Could someone please give me some idea what this means?
>
>
>
> ==> sasl_bind: dn="" mech= datalen=53
>
> SASL [conn=0] Failure: GSSAPI Error: A token w
Ken Raeburn wrote:
> If you're not actually using Kerberos, and don't want to, the
Kerberos
> rsh command you're using -- if it's similar enough to the one MIT
ships
> -- is probably trying Kerberos, reporting a failure, and then falling
> back to run the traditional Kerberos program. If it's no
Man, I've been trying to figure this one out for a while. I've rebuilt my
kdcs - both slave and master - twice. I've checked and re-checked my host
files on both machines. I've re-done my acl numerous times. I scripted the
entire process so that I would be sure that I didn't deviate from the
instru
Hi,
I have a little java app that can authenticate against my KDC on a
linux box. When i point the app at my domain controller (W2K) i get a
KRB5KDC_ERR_ETYPE_NOSUPP returned, or as it says in java
'javax.security.auth.login.LoginException: KDC has no support for
encryption type (14)'.
I set my
peter huang wrote:
> thanks so much for you help. I got rid of the ccache error from
> gss_init_sec_context. I'll write up the request for getting MSLSA open up
> more.
Would you confirm that you removed the error by adding the KDC
information to the Windows configuration?
> However, I d
thanks so much for you help. I got rid of the ccache error from
gss_init_sec_context. I'll write up the request for getting MSLSA open up
more. However, I don't know how much visibility I can get with the request
since MS has it's own priority and procedures espeically when it comes to
en
peter huang wrote:
> I'm glad more was asked about this subject, I gained more understanding of
> how this should work. In this case, the gss_init_sec_context failed trying
> to get a cross-realm tgt using MSLSA ccache but has no problem if I used
> API:krb5cc ccache. the realm info is more e
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi!
I've got some problems with MIT on actual Debian Sarge.
I made all from that page:
http://mailman.mit.edu/pipermail/kerberos/2004-October/006601.html
exept for the host keytabs.
I can login using the krb password, but a klist after successful login
10 matches
Mail list logo
