LukePet <[EMAIL PROTECTED]> wrote: > So, >> What does klist -kte (as root) show? > > [EMAIL PROTECTED]:~$ sudo klist -kte > 2 02/08/07 14:13:52 host/[EMAIL PROTECTED] (Triple DES > cbc mode with HMAC/sha1) > 2 02/08/07 14:13:52 host/[EMAIL PROTECTED] (DES cbc > mode with CRC-32) > >> Can you kinit -kt host/[EMAIL PROTECTED] on this machine? > > [EMAIL PROTECTED]:~$ kinit -kt host/[EMAIL PROTECTED] > kinit(v5): Client not found in Kerberos database while getting initial > credentials
Hmm... that looks bad. rm /etc/krb5.keytab and re-extract the host/lukesky.epiluke.it keytab into /etc/krb5.keytab from kadmin. > and If I exec kinit and telnet I have: > > [EMAIL PROTECTED]:~$ kinit pippo > Password for [EMAIL PROTECTED]: > [EMAIL PROTECTED]:~$ telnet -a -l pippo lukesky.epiluke.it > Trying 192.168.182.121... > Connected to admin.epiluke.it (192.168.182.121). > Escape character is '^]'. > Password for pippo: > Login incorrect > > why? what mean? It means its not using Kerberos, likely b/c of the problem with the host keytab. If you get a password prompt Kerberos ticket forwarding has failed and I'd suggest simply Ctrl-C-ing out of telnet. <<CDC ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
