Hi We're trying to make heimdal work on two Debian 2.2 systems, especially the telnet service. When installing everything on the same host (KDC + telnetd), it works fine. But when trying to set up the telnetd service on another host, we get an error. We first creating the host/thot.mds principal on the KDC (whose name is amon.mds) with "add host/thot.mds" and "ext host/thot.mds". Then, on the target telnet host (after running kinit) :
thot:~# kadmin kadmin> add host/thot.mds Max ticket life [unlimited]: Max renewable life [unlimited]: Principal expiration time [never]: Password expiration time [never]: Attributes []: host/thot.mds@KBTEST's Password: Verifying password - host/thot.mds@KBTEST's Password: kadmin: kadm5_create_principal: Operation requires `add' privilege kadmin: adding host/thot.mds: Operation requires `add' privilege Our kadm5.acl file (on amon.mds, the KDC) has one line : */*@KBTEST * (for granting everyone every right, for testing purpose) Why do we get a privilege error ? Thank you for your help Philippe Francois
