"akeane" <[EMAIL PROTECTED]> writes: > I'm attempting to port kerberos 5-1.2.2 to the QNX platform, I have kinit > running and can aquire tickets from a kdc server running on a seperate linux > box. > > When I try to use the simple client (sim_client) from a QNX get the > following error from the simple_server (running on a linux box)
My guess is you're having problems with hostname canonicalization. The hostname used in the "sample/<foo>" principal name should be the fully qualified domain name. The server is probably coming up with the principal name considered correct, but the server principal name you authenticate to is a different one. Sounds to me like the QNX box is not doing hostname canonicalization properly, at least through the interface we're using. Often this means you have an /etc/hosts file listing the machine, with the unqualified name first, and some other config file (nssswitch.conf or equivalent) tells the hostname lookup code to consult that file before DNS. Similarly, the entry in your database should be something like sample/dell3.quadrics.com or sample/dell3.bristol.quadrics.com, not sample/dell3. > So it appears that I have the correct ticket for this service, the only > thing I can think of is that the QNX box's IP resolves to a > qnx1.bristol.quadrics.com address rather than qnx1.quadrics.com - is this > likely to cause problems? No, the client machine's hostname is irrevelavnt. Ken
