> kinit -k -t /etc/keytabs/domtool.deleuze domtool/deleuze.hcoop.net
> kinit -k -t /etc/keytabs/domtool.deleuze domtool.deleuze.hcoop.net
> kinit -k -t /etc/keytabs/domtool.deleuze domtool/deleuze.hcoop.net
One problem: all the principals in that keytab are named
"domtool/[EMAIL PROTECTED]", not domtool/[EMAIL PROTECTED]
as these commands expect.
Suggestion: on my own machines, I have a policy of:
1) Never putting more than one principal in a given keytab file (I
don't think hcoop does this either).
2) Always using "k5start -U" and (almost) never using "kinit".
This eliminates any possibility of this sort of mix-up -- the
principal is detected automatically from the keytab, not taken from
the command line.
- a
--
PGP/GPG: 5C9F F366 C9CF 2145 E770 B1B8 EFB1 462D A146 C380
_______________________________________________
HCoop-SysAdmin mailing list
[email protected]
http://hcoop.net/cgi-bin/mailman/listinfo/hcoop-sysadmin
