Thanks, Ben. Copying a regular krb5 keytab to /usr/local/etc/openafs/server/rxkad.keytab worked and I was able to proceed until trying to create a user. I tried running
pts createuser -name test -id 1000 -localauth but it returns > pts: server or network not responding; unable to create user test with id > 1000 Nothing gets written to the log files in /var/openafs/log though. How can I find out what's causing the error? I tried to learn what was going on with truss and found that it was complaining that no /usr/local/etc/openafs/server/KeyFile and /usr/local/etc/openafs/server/UserList files existed, so I touched them, but that didn't make a difference. I shouldn't need the KeyFile at all if /usr/local/etc/openafs/server/rxkad.keytab is present, correct? buserver, vlserver, and ptserver seem to be running normally according to bos status: root@bsd-afs-server:~ # bos status bsd-afs-server -long > > bos: running unauthenticated > > Instance buserver, (type is simple) currently running normally. > > Process last started at Mon Sep 22 11:17:47 2014 (1 proc starts) > > Command 1 is '/usr/local/libexec/openafs/buserver' > > > Instance vlserver, (type is simple) currently running normally. > > Process last started at Mon Sep 22 11:17:47 2014 (1 proc starts) > > Command 1 is '/usr/local/libexec/openafs/vlserver' > > > Instance ptserver, (type is simple) currently running normally. > > Process last started at Mon Sep 22 11:17:47 2014 (1 proc starts) > > Command 1 is '/usr/local/libexec/openafs/ptserver' > In case it is relevant, when I run the pts createuser command with -noauth it immediately returns a "Permission denied" error. -- Eric Shell
