I have done this; kdb5_util create -s kadmin.local -q "ktadd -k kadm5.keytab kadmin/admin" kadmin.local -q "ktadd -k kadm5.keytab kadmin/changepw" kadmin.local -q "addprinc [EMAIL PROTECTED]" kadmin.local -q "addprinc [EMAIL PROTECTED]" shell# kadmin.local Authenticating as principal [EMAIL PROTECTED] with password. kadmin.local: addprinc [EMAIL PROTECTED] WARNING: no policy specified for [EMAIL PROTECTED]; defaulting to no policy Enter password for principal "[EMAIL PROTECTED]": Re-enter password for principal "[EMAIL PROTECTED]": Principal "[EMAIL PROTECTED]" created. kadmin.local: quit
Did I miss something? I am following the instructions here http://www.bayour.com/LDAPv3-HOWTO.html to some extent... -----Original Message----- From: Steve Langasek [mailto:[EMAIL PROTECTED]] Sent: Tuesday, December 11, 2001 7:40 PM To: Gill, Vern Cc: '[EMAIL PROTECTED]' Subject: Re: kadmin doesn't start Vern, On Tue, 11 Dec 2001, Gill, Vern wrote: > # /usr/local/kerberos5/sbin/kadmin > Authenticating as principal [EMAIL PROTECTED] with password. > kadmin: Client not found in Kerberos database while initializing kadmin > interface > I am lost... Have you set up administrative principals in your Kerberos database? To use 'kadmin', you must already have an admin principal in the database, and it must be added to the kadm5.acl file. If you do not yet have an admin principal in the database, you need to first run 'kadmin.local' on the KDC in order to add it. Typically, admin principals are of the form '<your_username>/admin', but NOT 'root/admin', because root is a host-specific concept that doesn't map well to Kerberos realms. Cheers, Steve Langasek postmodern programmer
