Re: [OpenAFS] AFS client on AIX: is there hope?

Christopher D. Clausen wrote: I'm using Solaris for my servers, two are Solaris 10 running 1.3.80 and one is still Solaris 9 running 1.2.13. I'm using NIS for account information. NIS, I see. Which Kerberos are you using? For KDC, I have debian woody's packages, so MIT. I compiled and am using MI

[OpenAFS] AFS client on AIX: is there hope?

Hi, still trying to have my AIX 5.2 get on my cell! My situation (again). Kerberos KDC, OpenAFS, OpenLDAP on debian stable. Kerberos authenticates, LDAP gives home informations along with GID/UID (*flat* database: "uid=username, objectClass=top, objectClass=posixAccount..."), at last, I convert

Re: [OpenAFS] Kerberos 5 in OpenAFS

[EMAIL PROTECTED] wrote: OK I understand, but I don't have to worry about users and passwords and user directories. Because this is a testproject. What I think i shoot do is get the migration tools: asetkey and aklog. Create an afs entry in Kerberos and so on ... But I cant find these migration to

Re: [OpenAFS] Problem with pam on debian with 1.3.81 kernel 2.6.11

Lars Schimmer wrote: Ok, after some more looking, I found, I don't have got the pam_krb5afs.so pam module. Only the pam_krb5 modules and pam_openafs_session.so. So, where did you got that pam_krb5afs.so modul? Use debian pam_openafs_session.so, it works: I don't know if it has changed, but debia

Re: [OpenAFS] afs_pam2 - A simplier approach to AFS integration during login

Douglas E. Engert wrote: As we start to use vendor provided Kerberos, OpenSSH and PAM modules, AFS integration into the login process becomes more difficult, as some vendors do not provide OpenAFS. We have no problems with installing OpenAFS separately, but would like to not have to replace the ven

[OpenAFS] Join kerberosV-based cell on AIX

Hi. Can you point me out how to make my aix 5.2 be client of our afs cell? We don't rely on kaserver, we use kerberos 5 (mit kdc) for authentication. I don't see how to connect the two... on aix we have the standard aix kerberos, I think it's mit-based. -- Sensei

[OpenAFS] AIX 5.2 Setup (k5/afs/ldap)

Hi. I'm quite new to AIX, so please excuse me... probably it's simple... I've read the redbook about AIX/Linux, but in no way I can figure out if I'm doing good, and I miss a step... I'm struggling with AIX 5.2... my knowledge is more on linux, AIX seems to have a different way of interpreting auth

Re: [OpenAFS] SSH: pag after ticket forwarding

John Koyle wrote: Make sure you are using the pam module. Here's the /etc/security/pam_unix2.conf file on all my suse systems: auth: call_modules=krb5afs nullok account:use_ldap call_modules=krb5afs password: call_modules=krb5afs nullok session:none This is my pam_unix2.c

[OpenAFS] SSH: pag after ticket forwarding

Hi. I'm using openssh 3.9p1 for sso under various distributions: mainly debian which ships with openssh 3.4p1, suse and rh (the latter is not so important for me now). My environment is openafs (no kaserver), mit kerberos 5. Suse user heimdal, so kinit gets tickets and a token directly. I can

Re: [OpenAFS] MacOSX with reliable AFS homedirs?

Troy Benjegerdes wrote: Has anyone gotten Krb5, ldap, and AFS homedirs working reliably? We've had to resort to setting up each individual users with a startup items script to run aklog. I've tried the 'kfm_aklog' plugin, but it doesn't seem to work, and none of the apple login hook stuff seems to