Feeling rather stupid here. Let's say I have:
o 192.168.1.0/24 (internal)
o realm DOMAIN.COM
o kdc.internal.domain.com (192.168.1.100)
o kdc.conf
allow-null-ticket-addresses = true
o host principals for
On Tue, Sep 6, 2011 at 10:32 AM, Ranjith Murugan wrote:
> Hi all
>
>
>
> I have been trying to setup an Kerberos and Active Directory setup, Seeing
> the same issue you have mentioned in you post (Preauth and ticket
> forwarding). I am currently not able to login to a windows machine using a
> ker
On Tue, Sep 6, 2011 at 10:12 AM, Greg Hudson wrote:
> On Tue, 2011-09-06 at 04:15 -0400, Mauricio Tavares wrote:
>> Now, when I try to ssh from externalbox to the kdc, it seems that
>> gssapi-with-mic isn't working:
>
> Usually the best way to debug auth problems wit
Let's say I have user principal passwords set to expire after X months.
So,
o To renew/change a user principal password before it expires, the
said user must have a ticket, right?
o A user should be able to change the user principal password in, say,
a Mac without much fuss. What if user
Let's say I have the following (I am really using slapd.d, but you get
the idea):
authz-regexp: "uid=ldap/slave.domain.com,cn=gssapi,cn=auth"
"cn=admin,dc=domain,dc=com"
How does that work? From what I understand it would map
"uid=ldap/slave.domain.com,cn=gssapi,cn=auth" to
"cn=admin,dc=domain,dc
On Mon, Oct 17, 2011 at 11:06 AM, Vipin Rathor wrote:
> Hello People,
> I'm trying to configure NFS (v3) server with Kerberos on RHEL6.1. I'm
> using RHEL5.5 as NFS client. When I try to mount from client, I'm
> getting 'Invalid argument' error (return code:32/broken pipe). I tried
> to run rpc.gs
Let's say I have two KDCs, primary/master and the slave (cannot edit
database, password changing included) where master is behind a firewall
with NAT and the slave is in the external side. And am storing the
principals database in ldap. Now, I would like to synchronize between
master an
I am trying to compile krb5 under cygwin. So after untaring I
run configure:
$ ./configure
[...]
configure: error: Shared libraries are not yet supported on this platform.
$ ./configure --enable-static
[...]
configure: error: --enable-static must be specified with --disable-shared
$ ./conf
On Tue, Dec 20, 2011 at 2:21 PM, Greg Hudson wrote:
> On 12/20/2011 12:50 PM, Mauricio Tavares wrote:
>> Can anyone show what I am doing wrong here?
>
> You're not doing anything wrong; the check for whether the platform
> supports shared libraries is simply done indepen
On Mon, Mar 5, 2012 at 9:18 AM, Basil Kurian wrote:
> Hi
>
>
> I 'm trying to implement single signon using kerberos+LDAP. I 'm able to
> login to servers , but next time also , I 'm asked enter credentials. That
> is authentication is working , but single sign on feature is not working .
>
>
>
>
On Tue, Mar 6, 2012 at 6:31 AM, Vamsi Kondadasula
wrote:
> Hi Team,
>
> I am a developer trying to integrate Kerberos and OpenLDAP on Mac OS (snow
> leopard 10.6.8).
>
> Steps followed:
>
> 1) Configured OpenLdap using the following document =>
>
>
> 2) Configured Kerberos using the following doc
On Tue, Mar 13, 2012 at 5:25 AM, shyno wrote:
> Sir,
> when I'm trying to set up a kerberized ftp,
> i'm getting following errors.
> Connected to 192.16.11.149.
> 220 ubuntu FTP server (Version 5.60) ready.
> 334 Using authentication type GSSAPI; ADAT must follow
> GSSAPI accepted as authenticatio
On Thu, May 10, 2012 at 3:36 PM, Muhammad Usman wrote:
> Hi,
> I am new to Kerberos and just want to know that how can I get the user
> credentials from Kerberos service ticket in my application for login
> purpose. I want to implement Kerberos in such a way that my Active
> Directory user does
On 08/01/2012 11:04 AM, Douglas E. Engert wrote:
>
>
> On 8/1/2012 8:09 AM, "Jörg Herzinger" wrote:
>> Hi, I am trying to get GSSAPI auth to work and the problem ist that my
>> kerberos server and the ssh server I want to connect to are behind a nat.
>> My setup looks like this:
>>
>> my_laptop ---
On Tue, Apr 1, 2014 at 7:29 AM, Vipul Mehta wrote:
> Hi,
>
> I am using mit kerberos library build in HP-UX IA64 platform but not able
> to get credentials from keytab. Username - password case works fine.
>
> Same method in my API to get credentials from keytab works fine in library
> build for
On Mon, Apr 21, 2014 at 1:03 PM, kannan rbk wrote:
> Dear Team,
>
> I am trying to connect a remote machine (using kerberos
> authentication) using ssh. But , I cannot able to connect the machine.
> It is the below ssh trace.
>
> OpenSSH_6.2p2, OSSLShim 0.9.8r 8 Dec 2011
> debug1: Reading con
On Wed, Mar 4, 2015 at 3:02 AM, arun elango wrote:
> Hi All,
>
> I would like to work with Kerberos in Windows. I have installed MIT
> Kerberos and found it to work fine. However *kadmin* , 'kadmin.local' does
> not work. I searched for the solution but couldn't find one. Please advice.
>
Wh
On Apr 11, 2016 6:39 PM, "Tom Yu" wrote:
>
> Hi, please drop krb...@mit.edu from replies to this thread. The krbdev
> list is for communciation among participants in the MIT Kerberos open
> source project.
>
> Elna van Rooyen writes:
>
> > I would like to know what the new price for Kerberos is.
There are ways to sync the AD server with the KDC, so in effect they are
separate but equal.
On Aug 20, 2016 12:14 PM, "Darren Terry" wrote:
List,
I am currently working on a project where I am required to integrate a
Windows 2012R2 domain with an existing Kerberos realm. The domain has not
bee
19 matches
Mail list logo
