After reading and trying to implement many FAQ over the Internet, I think I am now very confused.
My goal is to test KerberosV implementation in OpenBSD 3.0. So I read first the OpenBSD FAQ(www.openbsd.org/faq/faq10.html#Kerberos) talking about KerberosIV. Then I read the MIT one (web.mit.edu/kerberos/www/krb5-1.2/krb5-1.2.3/doc/install.html), and the OpenBSD KerberosV info pages (info heimdal) ... and since I think I am lost. So, from beginning, I create my configuration file. Then, if I had followed MIT FAQ, I should use kdb5_util to create the files I need. But, and here begins my troubles, kdb5_util does not exist on OpenBSD 3.0, there is only a kdb_util tool that is for KerberosIV operations. At this point I leaved the MIT FAQ and I continued on the heimdal-info page. To create the database, the info page suggests a "kstash" operation ... but without having created "principal.db" and "principal.ok" using kdb_init, kstash will not work. >From there I began to mix kerberosIV and kerberosV tools available through Heimdal on OpenBSD 3.0 to try to make the system work ... unsuccessfully. The best I have is a foreign client, obtaining a v5 ticket, but this client cannot access, for example, the kerberized telnet service on the OpenBSD 3.0 box. I suppose it is a principal-configuration problem, but I do not see where, and of course how to solve it. If someone has an idea or a suggestion, I will appreciate. Frederic
