On Thu, 2013-09-12 at 09:09 -0400, Simo Sorce wrote:

> Yes it is, but I need to see also what you get on the successfull ssh
> case, klist is all I need to see, no other output.
> 
> Also does it work all the time if you use the command
> 
> ssh -K dean@desktop2 ?


[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:14:40  09/13/13 11:14:40  krbtgt/hunter....@hunter.org

[dean@ipa2 ~]$ ssh dean@desktop2
Last login: Wed Sep 11 21:14:18 2013 from ipa2.hunter.org
Could not chdir to home directory /home/net/dean: Permission denied
-bash: /home/net/dean/.bash_profile: Permission denied

-bash-4.2$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)

-bash-4.2$ logout
-bash: /home/net/dean/.bash_logout: Permission denied
Connection to desktop2 closed.

[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:14:40  09/13/13 11:14:40  krbtgt/hunter....@hunter.org
09/12/13 11:15:29  09/13/13 11:14:40
host/desktop2.hunter....@hunter.org

[dean@ipa2 ~]$ su -
Password: 

[root@ipa2 ~]# klist
klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0)

[root@ipa2 ~]# ssh dean@desktop2
dean@desktop2's password: 
Last login: Thu Sep 12 11:16:15 2013 from ipa2.hunter.org

[dean@desktop2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktrhI7WX
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:17:40  09/13/13 11:17:39  krbtgt/hunter....@hunter.org
09/12/13 11:17:40  09/13/13 11:17:39  nfs/ipa2.hunter....@hunter.org

[dean@desktop2 ~]$ logout
Connection to desktop2 closed.

[root@ipa2 ~]# logout

[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:14:40  09/13/13 11:14:40  krbtgt/hunter....@hunter.org
09/12/13 11:15:29  09/13/13 11:14:40
host/desktop2.hunter....@hunter.org

[dean@ipa2 ~]$ ssh dean@desktop2
Last login: Thu Sep 12 11:17:39 2013 from ipa2.hunter.org

[dean@desktop2 ~]$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)

[dean@desktop2 ~]$ logout
Connection to desktop2 closed.

[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:14:40  09/13/13 11:14:40  krbtgt/hunter....@hunter.org
09/12/13 11:15:29  09/13/13 11:14:40
host/desktop2.hunter....@hunter.org

reboot ....

[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:23:56  09/13/13 11:23:56  krbtgt/hunter....@hunter.org

[dean@ipa2 ~]$ ssh -k dean@desktop2
Last login: Thu Sep 12 11:22:31 2013 from ipa2.hunter.org
Could not chdir to home directory /home/net/dean: Permission denied
-bash: /home/net/dean/.bash_profile: Permission denied

-bash-4.2$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)

-bash-4.2$ logout
-bash: /home/net/dean/.bash_logout: Permission denied
Connection to desktop2 closed.

[dean@ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT
Default principal: d...@hunter.org

Valid starting     Expires            Service principal
09/12/13 11:23:56  09/13/13 11:23:56  krbtgt/hunter....@hunter.org
09/12/13 11:24:43  09/13/13 11:23:56
host/desktop2.hunter....@hunter.org

_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to