Two notes: (1)your output includes the string "Auristor rxgk", which makes me think that you are not using stock OpenAFS... (2) the OS X GSSAPI library supports many more mechanisms than kerberos, so it would be good to see the klist output as both users before (and after, I suppose) aklog, and/or try to explicitly get credentials using /usr/bin/kinit
-Ben On Wed, 15 Jun 2016, Green, James wrote: > I'm trying to get OpenAFS working under Yosemite on my Macbook Pro with the > YFS/Auristor client. When executing aklog at the command line, I am seeing > this strange behavior: as root, aklog succeeds and receives a token, but as a > regular user, it segfaults. See transcript below. Something is broken > somewhere, highly likely to have been caused by me. But I am at a loss, any > suggestions or insight would be greatly appreciated, thanks. > > AS ROOT: > sh-3.2# /usr/local/bin/aklog -d > Authenticating to cell msu.edu. > ======== Auristor rxgk ======== > GSSAPI Error [851968:2529638919] > Miscellaneous failure (see text) > Matching credential (yfs-rxgk/[email protected]) not found > -------- failed -------- > ======== rxkad ======== > Trying to authenticate to user's realm MSU.EDU. > Matching credential (afs/[email protected]) not found while getting credentials > We've deduced that we need to authenticate to realm MSU.EDU. > Matching credential (afs/[email protected]) not found while getting credentials > Using Kerberos V5 ticket natively > -------- succeeded -------- > sh-3.2# tokens > > Tokens held by the Cache Manager: > > User's (AFS ID 15999) rxkad tokens for msu.edu [Expires Jun 16 00:06] > --End of list-- > > AS REGULAR USER: > jfgreen@jglt ~ /usr/local/bin/aklog -d > Authenticating to cell msu.edu. > ======== Auristor rxgk ======== > GSSAPI Error [851968:2529639048] > Miscellaneous failure (see text) > unknown mech-code 2529639048 for mech unknown > [1] 2289 segmentation fault /usr/local/bin/aklog -d > > ✘ jfgreen@jglt ~ tokens > > Tokens held by the Cache Manager: > > --End of list-- >
