subject:"\[Freeipa\-users\] FreeIPA Kerberos and Single\-DES for OpenAFS"

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-18 Thread Simo Sorce

On Tue, 18 Nov 2014 15:11:01 +0100 Andreas Ladanyi wrote: > Hi Simo, > >> Thats interesting. Now i can receive afs/cellname@REALM service > >> tickets with des-cbc-crc and aes256 key on the client but only > >> when i execute: > >> > >> kvno -e des-cbc-crc afs/cellname > >> > >> If i execute aklo

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-18 Thread Andreas Ladanyi

Hi Simo, >> Thats interesting. Now i can receive afs/cellname@REALM service >> tickets with des-cbc-crc and aes256 key on the client but only when i >> execute: >> >> kvno -e des-cbc-crc afs/cellname >> >> If i execute aklog to obtain an afs token from tgt i get a >> afs/cellname@REALM service tick

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-17 Thread Simo Sorce

On Mon, 17 Nov 2014 13:59:44 +0100 Andreas Ladanyi wrote: > > > Hi, > > I set up the 389 LDAP server to support des-cbc-crc enctype. > > I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 > (single-DES). I created the principal with: > > kadmin.

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-17 Thread Dmitri Pal

On 11/17/2014 07:59 AM, Andreas Ladanyi wrote: Hi, I set up the 389 LDAP server to support des-cbc-crc enctype. I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 (single-DES). I created the principal with: kadmin.local -x ipa-setup-override-restrictions Please don't do this, use

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-17 Thread Andreas Ladanyi

> Hi, I set up the 389 LDAP server to support des-cbc-crc enctype. I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 (single-DES). I created the principal with: kadmin.local -x ipa-setup-override-restrictions >>> Please don't do this, use the ipa

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-14 Thread Andreas Ladanyi

> [root@cc21 ~]# ipa host-add --force afs-cellname.ipacloud.test > --- > Added host "afs-cellname.ipacloud.test" > --- > Host name: afs-cellname.ipacloud.test > Principal name: host/afs-cellname.ipacloud.t...@ipacloud.test >

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-13 Thread Alexander Bokovoy

On Thu, 13 Nov 2014, Andreas Ladanyi wrote: Hi, I set up the 389 LDAP server to support des-cbc-crc enctype. I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 (single-DES). I created the principal with: kadmin.local -x ipa-setup-override-restrictions Please don't do this, use the

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-13 Thread Andreas Ladanyi

>> Hi, >> >> I set up the 389 LDAP server to support des-cbc-crc enctype. >> >> I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 >> (single-DES). I created the principal with: >> >> kadmin.local -x ipa-setup-override-restrictions > Please don't do this, use the ipa service-add and ipa

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-12 Thread Petr Spacek

On 13.11.2014 02:17, Simo Sorce wrote: > On Wed, 12 Nov 2014 15:54:14 +0100 > Andreas Ladanyi wrote: > >> Hi, >> >> I set up the 389 LDAP server to support des-cbc-crc enctype. >> >> I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 >> (single-DES). I created the principal with: >> >

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-12 Thread Simo Sorce

On Wed, 12 Nov 2014 15:54:14 +0100 Andreas Ladanyi wrote: > Hi, > > I set up the 389 LDAP server to support des-cbc-crc enctype. > > I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 > (single-DES). I created the principal with: > > kadmin.local -x ipa-setup-override-restrictions

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-12 Thread Dmitri Pal

On 11/12/2014 09:54 AM, Andreas Ladanyi wrote: Hi, I set up the 389 LDAP server to support des-cbc-crc enctype. I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 (single-DES). I created the principal with: kadmin.local -x ipa-setup-override-restrictions The result is: Principal:

[Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

2014-11-12 Thread Andreas Ladanyi

Hi, I set up the 389 LDAP server to support des-cbc-crc enctype. I created a principal for OpenAFS. OpenAFS need des-cbc-crc:v4 (single-DES). I created the principal with: kadmin.local -x ipa-setup-override-restrictions The result is: Principal: afs/cellname@Realm Key: vno 1, des-cbc-crc, no s

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

Re: [Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

[Freeipa-users] FreeIPA Kerberos and Single-DES for OpenAFS

12 matches

Site Navigation

Mail list logo

Footer information