I'm a newbie to AFS, but have been an IT guy for a long time. Trying
to set this up in a lab to test to gain understanding of how to use for
one of my customers.
My server is CentOS 5 and I'm almost there, but stuck at the every end.
Here's what I've done and where I'm stuck.
- Installed
Gary Bowling wrote:
I'm a newbie to AFS, but have been an IT guy for a long time. Trying
to set this up in a lab to test to gain understanding of how to use
for one of my customers.
My server is CentOS 5 and I'm almost there, but stuck at the every
end. Here's what I've done and where I'm
I found a bit more information that may point to my problem. In the
/var/log/krb5kdc.log log file I get the following errors. But I'm not
sure how to resolve.
May 02 11:19:26 homepc.gbco.us krb5kdc[2192](info): AS_REQ (7 etypes {18
17 16 23 1 3 2}) 10.0.0.150: ISSUE: authtime 1209745166,
* Gary Bowling wrote:
{1}) 10.0.0.150: UNKNOWN_SERVER: authtime 1209745166, [EMAIL PROTECTED] for
afs/[EMAIL PROTECTED], Server not found in Kerberos database
May 02 11:19:38 homepc.gbco.us krb5kdc[2192](info): TGS_REQ (1 etypes
Have a look at your dns setup you need forward rrs and ptr rrs
On Fri, May 2, 2008 at 12:26 PM, Gary Bowling [EMAIL PROTECTED] wrote:
I found a bit more information that may point to my problem. In the
/var/log/krb5kdc.log log file I get the following errors. But I'm not sure
how to resolve.
May 02 11:19:26 homepc.gbco.us krb5kdc[2192](info): AS_REQ
Ok, after being side tracked by real work for an hour or so I'm back to
looking at this. Here are some answers to a few of the responses.
Lars - Thanks, I had no idea DNS needed anything. I have everything in
/etc/hosts right now. Will that work or do I need DNS entries? Time is
sync'd
One more piece of info, Steve asked what the output of klog admin was,
which might point to something.
klog admin
Password:
Unable to authenticate to AFS because Authentication Server was unavailable.
Gary
___
OpenAFS-info mailing list
Gary Bowling [EMAIL PROTECTED] wrote:
Ok, after being side tracked by real work for an hour or so I'm back
to looking at this. Here are some answers to a few of the responses.
Lars - Thanks, I had no idea DNS needed anything. I have everything in
/etc/hosts right now. Will that work or do I
Gary Bowling wrote:
One more piece of info, Steve asked what the output of klog admin was,
which might point to something.
klog admin
Password:
Unable to authenticate to AFS because Authentication Server was
unavailable.
Gary
___
OpenAFS-info
Here are the results,
vos listaddrs -nore
vsu_ClientInit: Could not get afs tokens, running unauthenticated.
If I do it with the -noauth I get no return.
vos listaddrs -nore -noauth
Gary
Christopher D. Clausen wrote:
Gary Bowling [EMAIL PROTECTED] wrote:
Ok, after being side tracked
On Fri, May 2, 2008 at 2:22 PM, Gary Bowling [EMAIL PROTECTED] wrote:
One more piece of info, Steve asked what the output of klog admin was,
which might point to something.
klog admin
Password:
Unable to authenticate to AFS because Authentication Server was
unavailable.
klog is a
Gary Bowling [EMAIL PROTECTED] wrote:
klog admin
Password:
Unable to authenticate to AFS because Authentication Server was
unavailable.
I'm pretty sure you aren't using kaserver and as such klog won't work
(without a ka-forwarder or aother such service running.) You want to
use aklog and
Here are the outputs of several..
First this command and response:
vos listvldb
vsu_ClientInit: Could not get afs tokens, running unauthenticated.
VLDB entries for all servers
root.afs
RWrite: 536870912
number of sites - 1
server homepc.gbco.us partition /vicepa RW Site
Total
Ok, I appear to be beating my head here.. What is the best way to clean
this thing and re-start? I think I can get rid of all the AFS, but not
sure about the krb stuff. Is there a convenient way to delete all the
kerberos pieces and start fresh?
I've done so many things now, I may have it
Ok, maybe a few more tries.. Is there something wrong with my REALM or
my cell name? Something doesn't match correctly, but I'm not sure what..
Why do I get this, if I do a klist admin or a klist [EMAIL PROTECTED] I
get the following:
klist admin
klist: No credentials cache found (ticket
Gary Bowling wrote:
05/02/08 15:09:05 05/03/08 15:05:58 [EMAIL PROTECTED]
I strongly recommend against the use of the [EMAIL PROTECTED]
for of the afs service ticket name in place of afs/[EMAIL PROTECTED]
since [EMAIL PROTECTED] can be any realm.
Using afs/[EMAIL PROTECTED] permits the
Gary Bowling wrote:
Ok, maybe a few more tries.. Is there something wrong with my REALM or
my cell name? Something doesn't match correctly, but I'm not sure what..
Why do I get this, if I do a klist admin or a klist [EMAIL PROTECTED]
I get the following:
klist admin
klist: No credentials
17 matches
Mail list logo
