Hi,
thank you for your efforts.
In none of the above cases the afs service ticket work correctly
although In the 1. case i have a des-cbc-crc key.
I cant access my user directory in afs. I get a permission denied error.
Yes, and that is expected. I suppose I have not been clear; you have two
On Tue, 11 Nov 2014 09:28:35 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
No the token from aklog doesnt work fine. I could only list the user
directories (name of the users). I could not enter the user directories.
I couldnt enter my own directory. The AFS ID of the token is ok and
On Mon, 17 Nov 2014 16:28:51 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
I think i solved this issue now:
...but you mentioned it still doesn't work? I don't see how this is
solved.
In none of the above cases the afs service ticket work correctly
although In the 1. case i have a
On Mon, 10 Nov 2014 10:09:54 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
Now aklog works and i can get a AFS token. Why are all this keys
important for aklog ? Or which key exeptly the DES key is important ?
That is indeed a bit puzzling; it's possible ipa-getkeytab does
something
old server:
MIT Kerberos 5 - Realm A
What version?
Version 1.9.2 from OpenCSW
new server:
FreeIPA 3.3
I don't suppose you know what version of MIT krb5 this is based on?
Version : 1.11.5
Release : 11.fc20
Service principals:
afs/FQDN of the old Server with
On Tue, 11 Nov 2014 09:28:35 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
No the token from aklog doesnt work fine. I could only list the user
directories (name of the users). I could not enter the user directories.
I couldnt enter my own directory. The AFS ID of the token is ok and
Hi,
On Fri, 07 Nov 2014 16:05:11 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
sorry i didnt told that. In FreeIPA you must enable the DES salttype. I
enabled the des-cbc-crc:normal and des-cbc-crc:v4.
I'm not too familiar with FreeIPA, but usually you need to enable weak
enctypes
On Mon, 10 Nov 2014 10:09:54 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
Now aklog works and i can get a AFS token. Why are all this keys
important for aklog ? Or which key exeptly the DES key is important ?
That is indeed a bit puzzling; it's possible ipa-getkeytab does
something
On Fri, 07 Nov 2014 16:05:11 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
sorry i didnt told that. In FreeIPA you must enable the DES salttype. I
enabled the des-cbc-crc:normal and des-cbc-crc:v4.
I'm not too familiar with FreeIPA, but usually you need to enable weak
enctypes
On Fri, 07 Nov 2014 11:41:21 +0100
Andreas Ladanyi andreas.lada...@kit.edu wrote:
old server:
MIT Kerberos 5 - Realm A
What version?
new server:
FreeIPA 3.3
I don't suppose you know what version of MIT krb5 this is based on?
Service principals:
afs/FQDN of the
10 matches
Mail list logo
