On Wed, Aug 13, 2003 at 06:04:02PM -0400, Mikhail Teterin wrote:
> Hello!
> 
> I'm trying to make the FreeBSD 5.x machine accept users based on
> Kerberos' tickets.

Ok ...

> The telnet and telnetd seem like the most functional pair for this
> excercise. (rlogin's man page documents Kerberos options, but they
> are not implemented, it seems).

True, in the base install. If you use the Heimdal or MIT port you'll get
the fully implemented daemons.

> The KDC is a Win2K server (with Active Directory), but, according
> to tcpdump, nothing talks to it during the (failing) authentication
> attempt. After adding ``-a debug -edebug -D report'' to telnetd,
> I get the following, when trying to telnet to the host:
<snip>

I've never worked directly with an AD server acting as the KDC (I tend
to use a cross-realm trust with a Unix KDC), so I can't help you there.
But the new Kerberos book published by O'Reilly has a troubleshooting
chapter available as a PDF which you might find helpful:

http://www.oreilly.com/catalog/kerberos/chapter/ch05.pdf

-T


_______________________________________________
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to