I tried to install openafs server and build a cell on my gentoo box. net-fs/openafs version: 1.6.1[kerberos pam -doc] net-fs/openafs-kernel version: 1.6.1[kernel_linux] app-crypt/mit-krb5 version: 1.9.2-r2[keyutils pkinit threads -doc -openldap -test -xinetd]
I had followed this guide: http://en.gentoo-wiki.com/wiki/OpenAFS_with_MIT_Kerberos MIT Kerberos realm was configured smoothly, I can access it with administrator password via kadmin and it shows all principals mentioned in the guide. I'm stack at point of first-time client run. http://en.gentoo-wiki.com/wiki/OpenAFS_with_MIT_Kerberos#Starting_the_client If I run afsd -fakestat -stat 2000 -dcache 800 -daemons 2 -volumes 70 -debug (not using afsdb to get rid of possible dns-configuration errors) I got some debug messages with this: ... afsd: All AFS daemons started. ... SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 SScall(137, 28, 9)=0 afsd: Calling AFSOP_GO with cacheSetTime = 0 SScall(137, 28, 100)=0 afsd: All AFS daemons started. afsd: Forking trunc-cache daemon. afsd: Mounting the AFS root on '/afs', flags: 0. SScall(137, 28, 3)=0 afsd: Can't mount AFS on /afs(22) If I try to do aklog first, I got this: # aklog -d Authenticating to cell asu.aaa.bb (server dali.asu.aaa.bb). Trying to authenticate to user's realm STA. Getting tickets: afs/asu.aaa.bb@STA Using Kerberos V5 ticket natively About to resolve name afsadmin to id in cell asu.aaa.bb. Id 1 Set username to AFS ID 1 Setting tokens. AFS ID 1 @ asu.aaa.bb aklog: a pioctl failed while obtaining tokens for cell asu.aaa.bb The documentation on the official site seemed to be outdated, I can not find any actual one more detailed than the guide I've used. I'm sure there is a trivial error in my configurations and I need help to find it. Detailed info below: Filesystems: reiserfs is mounted over /afs for cell data reiserfs is mounted over /afs_cache for client cache kernel: Linux dali.asu.aaa.bb 3.3.2 i686 Intel(R) Core(TM)2 Quad CPU Q9550 @ 2.83GHz GenuineIntel GNU/Linux experimental native kernel support is disabled in sake of provided libafs module. dmesg over libafs: libafs: module license 'http://www.openafs.org/dl/license10.html' taints kernel. Disabling lock debugging due to kernel taint enabling dynamically allocated vcaches Starting AFS cache scan...found 0 non-empty cache files (0%). servers are started normally, bos server has appropriate keytab.afs file ps ax | grep afs 9913 ? S 0:00 /usr/libexec/openafs/ptserver 9914 ? S 0:00 /usr/libexec/openafs/vlserver 9915 ? S<l 0:00 /usr/libexec/openafs/fileserver 9916 ? Sl 0:00 /usr/libexec/openafs/volserver 19579 ? S 0:00 [afs_pagecopy] 19618 ? S 0:00 [afs_callback] 19619 ? S 0:00 [afs_rxlistener] 19620 ? S 0:00 [afs_rxevent] 19622 ? S 0:00 [afsd] 19624 ? S 0:00 [afs_checkserver] 19627 ? S 0:00 [afs_background] 19628 ? S 0:00 [afs_background] 19630 ? S 0:00 [afs_cachetrim] configuration files: #cat /etc/openafs/BosConfig restarttime 11 0 4 0 0 checkbintime 3 0 5 0 0 bnode simple ptserver 1 parm /usr/libexec/openafs/ptserver end bnode simple vlserver 1 parm /usr/libexec/openafs/vlserver end bnode fs fs 1 parm /usr/libexec/openafs/fileserver parm /usr/libexec/openafs/volserver parm /usr/libexec/openafs/salvager end # cat /etc/openafs/bosserver.rxbind 127.0.0.1 # cat /etc/openafs/cacheinfo /afs:/afs_cache:4500000 # cat /etc/openafs/CellServDB >asu.aaa.bb #main cell 192.168.1.128 #dali.asu.aaa.bb # cat /etc/openafs/krb.conf STA # cat /etc/openafs/ThisCell asu.aaa.bb # cat /etc/openafs/server/CellServDB >asu.aaa.bb #main cell 192.168.1.128 #dali.asu.aaa.bb # cat /etc/openafs/server/ThisCell asu.aaa.bb What may the mistake be? How can I check it? What is the appropriate order of client initialization (afsd first or aklog first)? Thanks, ayvango _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
