*Hi,*
I am new to kerberos, I have been asked to setup KDC, kerberos client
and application server. Using these i have to capture AP_REQ, AP_REP, AS_REQ
and AS_REP in wireshark. I have two systems both are working on Red Hat
Linux. I downloaded Kerberos from MIT version 5. I went through ins
Hi,
I want to capture AP_REQ and AP_REP, for that i want to run
telnetd, rlogind daemons on my application server. When i run rlogind i will
get the following error:
* rlogind: Can't get peer name of remote host: Socket operation on
non-socket
*
when i run rsh i get* host unknown
Hi,
I have configured KDC, application server, client as given in the
manual and i have created principal vi...@global.com
but when i run rlogin and telnet i am getting following error.
1. When i run *rlogin *i am getting following error(Uncommented rlogind
in /etc/inetd.conf on
Hi,
When i tried to rlogin i am getting following error:
*bash-3.1# rlogin 172.16.10.211.global.com
Couldn't authenticate to server: Bad sendauth version was sent
trying normal rlogin (/usr/bin/rlogin)
*
/etc/inetd.conf is as follows(commented lines not shown):
*
time
Hi all,
I am implementing PKINIT. My krb5.conf and kdc.conf are as follows
*krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
default_realm
Hi all,
I am implementing PKINIT, but i am not getting PA-DASS, PA-PK-AS-REQ,
PA-PK-AS-REP fields in the reply( KRB5KDC_ERR_PREAUTH_REQUIRED) from KDC.
Its asking password to authenticate and sending encrypted time-stamp in the
second AS_REQ to KDC, but i want to use certificate based authe
Hi all,
I am implementing PKINIT. I have generated certificates using
openssl tool, but i am not getting PA-DASS, PA-PK-AS-REQ,
PA-PK-AS-REP fields in the reply(
KRB5KDC_ERR_PREAUTH_REQUIRED) from KDC. Its asking password to
authenticate and sending encrypted time
Hi all,
I have enabled PKINIT, but when i try to do kinit -X
X509_user_identity=FILE:/client/client.crt,/client/client.key vinay
i am getting following error:
kinit(v5): Invalid signature while getting initial credentials
client.crt and kdc.crt both are signed by ca.key. The method i have
adopte
Hi all,
I have setup kerberos client, server and application server,
but when i try to do rlogin i am getting following error:
***ERROR***
Couldn't authenticate to server: Connection reset by peer
*
Hi all,
I have generated KDC certificate using openssl for PKINIT
implementation. Following lines were included in openssl.cnf while
generating KDC certificate containing Subject Alternative Extension.
# Add id-pkinit-san (pkinit subjectAlternativeName)
subjectAltName=otherName:1.3.6.1.5.2.2
10 matches
Mail list logo
