Has anyone gotten Krb5, ldap, and AFS homedirs working reliably?
We've had to resort to setting up each individual users with a startup items script to run aklog.
I've tried the 'kfm_aklog' plugin, but it doesn't seem to work, and none
of the apple login hook stuff seems to work.
What is the equivalent of a linux PAM line like:
session libpam-openafs-session.so debug
I have set up macosx for your combination. Install k5 and aklog for osx along with openafs for osx (configuring it), make the directory service aware of your ldap setting (ldap must use the posixAccount schema, remember!), modify edu.mit.Kerberos, and finally modify the authorization in /private/etc/authorization --- works perfectly. Google for osx kerberos --- you'll find many pages on the topic.
Hope it helped.
-- Sensei <mailto:[EMAIL PROTECTED]> <pgp:8998A2DB> <icqnum:241572242> <yahoo!:sensei_sen> <msn-id:[EMAIL PROTECTED]>
signature.asc
Description: OpenPGP digital signature
