Hi, We have set up a cell where we run 3.5 on servers and clients. So far all the machines are Suns running Solaris 2.6 In our environment we have a need for cross-realm authentication, so we have implemented kth-krb. The main realm is called ERICSSON.SE and the local realm is called RESEARCH.ERICSSON.SE. The afs cell is called research.ericsson.se. I have understood that for a user to have permissions if he got his token thru ERICSSON.SE, he needs to have a user name like [EMAIL PROTECTED] The problem is that when I try to create such a user with 'pts', I'm not allowed to choose a user ID. The error message I get is: pts: argument illegal or out of range. If I create the user without choosing the ID, the user is created but he still doesn't have any permissions since his ID is different than the one in kerberos (I suppose...) Has anyone seen this and/or have any clues as how to solve the problem. Thanks, /Mikael +-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-+ Mikael Nordstrom Ericsson Radio Systems AB UNIX System Administrator, ERA/T/BD tel: +46-8-757 0998 email: [EMAIL PROTECTED] fax: +46-8-757 5550
Problems with cross-realm authentication
Nordstr�m Mikael Mon, 13 Sep 1999 14:50:45 +0200 (MET DST)
