I believe I am chalking this (original reported issue)
up to a broken sshd_config, believe it or not. All of
the crazy UNKNOWN_SERVER errors are gone.
UsePAM was yes, ChallengeResponseAuthentication was "no"
so no PAM auth was being used. Don't ask me how, but I
was getting in somehow and gettin
>The authentication process is trying to find
>krbtgt/[EMAIL PROTECTED] which does not exist.
>
>Is kdb5_util creating an improperly named krbtgt principal
>or is RHELv4 pam_krb5.so improperly naming its requested
>principal (lowercasing it)?
As a guess, I believe that pam_krb5.so thinks that it n
I think I see part of the problem, and don't know who is
to "blame" for it.
The command 'kdb5_util create -r RCF.FOO.COM -s' created
krbtgt/[EMAIL PROTECTED]
The authentication process is trying to find
krbtgt/[EMAIL PROTECTED] which does not exist.
Is kdb5_util creating an improperly named krbt
Russ Allbery wrote:
> Your PAM module seems to be probing for a default realm by trying various
> manipulations of your local hostname. Usually this would indicate that
> your krb5.conf isn't setting a local realm.
>
Default realm or domain to realm mapping?
>> Apr 23 15:10:44 kdc.foo.com krb5kdc[
Hi Russ,
> Your PAM module seems to be probing for a default realm by
> trying various manipulations of your local hostname. Usually
> this would indicate that your krb5.conf isn't setting a local
> realm.
Here's /etc/krb5.conf. Using 'kinit jblaine' asks me for
the password for [EMAIL PROT
Jeff Blaine <[EMAIL PROTECTED]> writes:
> Stumped again :) Any help would be great. I am clearly doing something
> poorly.
> Alright, I completely nuked my krb5kdc directory and started over from
> scratch with an all-caps realm name. I updated krb5.conf and kdc.conf
> accordingly (beforehand)