How do I enable collections? How does the output of klist/klist -A
look like if the feature is working?
Olga
On Wed, Aug 27, 2014 at 6:16 PM, Benjamin Kaduk ka...@mit.edu wrote:
On Wed, 27 Aug 2014, ольга крыжановская wrote:
How can I use multiple principals from different realms via kinit
How can I use multiple principals from different realms via kinit?
I tried:
kinit fle...@waronterror.com
...
klist shows tgt for fle...@waronterror.com
now I do the same for o...@mylaptop.com but klist only shows the tgt
for o...@mylaptop.com, the tgt for fle...@waronterror.com is no longer
Plain des-cbc-crc only authentication doesn't seem to be supported, any more:
$ kadmin
Authenticating as principal root/ad...@minipax.terroronwar.org with password.
kadmin: KDC has no support for encryption type while initializing
kadmin interface
Olga
On Thu, Mar 20, 2014 at 11:32 PM, Benjamin
-hmac-sha1-96
permitted_enctypes = des-cbc-crc
Any other ideas?
Olga
On Fri, Mar 21, 2014 at 4:06 PM, Benjamin Kaduk ka...@mit.edu wrote:
On Fri, 21 Mar 2014, ольга крыжановская wrote:
Plain des-cbc-crc only authentication doesn't seem to be supported, any
more:
Most likely, you
Simo, please be careful with advertising. Fedora has the same problem.
Olga
On Thu, Mar 20, 2014 at 2:16 PM, Simo Sorce s...@redhat.com wrote:
On Thu, 2014-03-20 at 13:05 +0100, Wendy Lin wrote:
Doable, but it will take months to migrate. What do not understand is
that no one, say Linus or
Can any one confirm, or deny, that using only
permitted_enctypes = des-cbc-crc
will work around the problem? How can I create such a des-cbc-crc
key, if I do not have them yet?
Olga
On Thu, Mar 20, 2014 at 1:44 PM, steve st...@steve-ss.com wrote:
On Thu, 2014-03-20 at 13:05 +0100, Wendy Lin
Can any one help?
Olga
On Sat, Mar 15, 2014 at 3:15 AM, ольга крыжановская
olga.kryzhanov...@gmail.com wrote:
And the kdc log /var/log/krb5/krb5kdc.log gives me this error:
Mar 15 03:06:50 nexentapuzzle krb5kdc[3003](info): AS_REQ (7 etypes
{18 17 16 23 1 3 2}) 192.168.2.98: CLIENT_NOT_FOUND
Does Kerberos have a way to show me the data in /etc/krb5.keytab in ASCII form?
Olga
--
, __ ,
{ \/`o;-Olga Kryzhanovska -;o`\/ }
.'-/`-/ olga.kryzhanov...@gmail.com \-`\-'.
`'-..-| / http://twitter.com/fleyta
On Fri, Mar 14, 2014 at 12:47 PM, steve st...@steve-ss.com wrote:
On Fri, 2014-03-14 at 12:22 +0100, ольга крыжановская wrote:
Does Kerberos have a way to show me the data in /etc/krb5.keytab in ASCII
form?
Olga
Hi
We use:
klist -ket /etc/krb5.keytab
Do you want the content of keys
How do I reset a whole Kerberos5 server setup? Which files have to be
cleared or deleted?
And the same question, for the client. How do I reset a Kerberos5 client?
Olga
--
, __ ,
{ \/`o;-Olga Kryzhanovska -;o`\/ }
.'-/`-/
I am on a Suse 11.3 installation which itself runs the kdc for
testing. There is a local account test001, for which I added a
principal via kadmin's ank sub command, i.e. 'ank test001'.
Now if I wish to log in I can't do it, and see the following error in
/var/log/messages:
Mar 15 02:29:06
not
found in Kerberos database
What does that mean?
Olga
On Sat, Mar 15, 2014 at 3:02 AM, ольга крыжановская
olga.kryzhanov...@gmail.com wrote:
I am on a Suse 11.3 installation which itself runs the kdc for
testing. There is a local account test001, for which I added a
principal via kadmin's ank sub
wrote:
Am 12.03.2014 02:30, schrieb ольга крыжановская:
Does anyone know how I can debug kerberos pam on Linux? We have a new
krb5 server running on stock Suse 11.3 on which a user test001 is
configured. Logging in into that local account works on the server and
gives automagic a krb5 ticket.
I'm
Does anyone know how I can debug kerberos pam on Linux? We have a new
krb5 server running on stock Suse 11.3 on which a user test001 is
configured. Logging in into that local account works on the server and
gives automagic a krb5 ticket.
However, on the client machine, which runs Suse 12.3, which
recommendations, please.
Olga
On Wed, Jul 10, 2013 at 5:26 PM, Zhanna Tsitkov tsitk...@mit.edu wrote:
Would PDF version of MIT Kerberos documentation work for you?
On Jul 10, 2013, at 4:50 AM, ольга крыжановская wrote:
Thanks, but my point is to have a *book*, which can be read while
being
Can any one recommend a good Kerberos book, for administration, and
one for development?
Olga
--
, __ ,
{ \/`o;-Olga Kryzhanovska -;o`\/ }
.'-/`-/ olga.kryzhanov...@gmail.com \-`\-'.
`'-..-| /
Thanks, but my point is to have a *book*, which can be read while
being offline, or can be used as reference while in an intranet,
without having access to the Internet at all.
Olga
On Wed, Jul 10, 2013 at 10:44 AM, A. P. Garcia
a.phillip.gar...@gmail.com wrote:
On Jul 10, 2013 3:27 AM, ольга
Russ, here is my RFE:
- Support SCTP.
- If SCTP is supported, allow that more than stdin/stdout/stderr
streams (with fifo semantics only, not full file I/O with seek()) to
be forwarded. This should be easy, as SCTP can embed many streams with
in a single SCTP connection.
Olga
On Wed, Sep 26,
:
ольга крыжановская olga.kryzhanov...@gmail.com writes:
Russ, here is my RFE:
- Support SCTP.
What does that mean for an application program?
- If SCTP is supported, allow that more than stdin/stdout/stderr
streams (with fifo semantics only, not full file I/O with seek()) to
be forwarded
Rivera, it sounds like your compiler defaults to the C90 standard,
while the warning messages IMO indicate the code is written for C99
(newer standard version of ISO C).
deltat.c:1198: error: expected ',' or ';' before '=' token
deltat.c:1201: warning: ISO C90 forbids mixed declarations and code
Can a plain user on Solaris 10/11, without intervention or extra setup
work of root or the administrator, use a NFSv4 share which is
protected by krb5i (Kerberos5 with integrity checks) through /net
(Solaris /net is a special file system called the automounter which
can mount NFS file systems
Are there any books you can recommend for kerberos5 administration and setup?
Olga
--
, _ _ ,
{ \/`o;- Olga Kryzhanovska -;o`\/ }
.'-/`-/ olga.kryzhanov...@gmail.com \-`\-'.
`'-..-| / http://twitter.com/fleyta
22 matches
Mail list logo