]
Sent: Wednesday, July 28, 2004 5:55 PM
To: Eliot Lebsack
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
You still haven't told me what happens when you try a kinit as a
non-root user on your Solaris 8 machine. That was step one of the
debugging procedure I gave you
for your attention on this issue.
Regards,
Eliot
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Wednesday, July 28, 2004 5:55 PM
To: Eliot Lebsack
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
You still haven't told me what
-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf
Of Eliot Lebsack
Sent: Thursday, July 29, 2004 9:51 PM
To: 'Henry B. Hotz'
Cc: [EMAIL PROTECTED]
Subject: RE: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Henry,
I just managed to get it working. It turns out
]
The MITRE CorporationBedford, MA
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 3:17 PM
To: [EMAIL PROTECTED]
Cc: Eliot Lebsack
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack
: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Hi!
Try commenting out pam_dhkeys.so from your pam.conf - if you have it.
If it doesn't solve the problem, put pam in debug mode, adding something
like:
auth.debug /etc/pam_debug
to your /etc/syslog.conf, and sending
: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Right, that's the problem. You need to set -rw-r--r-- (644) for
krb5.conf.
Those permissions are correct for krb5.keytab.
Both should be root owned.
On Jul 26, 2004, at 1:05 PM, Eliot Lebsack wrote:
Henry,
Just checked
CorporationBedford, MA
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 6:20 PM
To: Eliot Lebsack
Cc: [EMAIL PROTECTED]
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Right, that's the problem. You
Bedford, MA
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 6:20 PM
To: Eliot Lebsack
Cc: [EMAIL PROTECTED]
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Right, that's the problem. You need to set -rw
Bedford, MA
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 6:20 PM
To: Eliot Lebsack
Cc: [EMAIL PROTECTED]
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
Right, that's the problem. You need
If it works as root, but not as a user, then it sounds like a
permissions problem. Is /etc/krb5/krb5.conf world-readable?
On Jul 26, 2004, at 9:00 AM, [EMAIL PROTECTED] wrote:
Date: Mon, 26 Jul 2004 09:55:02 -0400
From: Eliot Lebsack [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Solaris
Communications Engineer [EMAIL PROTECTED]
The MITRE CorporationBedford, MA
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 3:17 PM
To: [EMAIL PROTECTED]
Cc: Eliot Lebsack
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC
On Mon, 2004-07-26 at 16:05, Eliot Lebsack wrote:
Just checked - the permissions are -rw--- (0600).
Just checked what? Your krb5.conf? If so, then that's your problem.
As Henry told you:
If it works as root, but not as a user, then it sounds like a
permissions problem. Is
Bedford, MA
-Original Message-
From: Kevin L. Mitchell [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 4:23 PM
To: Eliot Lebsack
Cc: [EMAIL PROTECTED]
Subject: RE: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
On Mon, 2004-07-26 at 16:05, Eliot Lebsack wrote:
Just
On Mon, 2004-07-26 at 16:47, Eliot Lebsack wrote:
I changed the permissions to -rw-r--r-- (chmod +r) for
/etc/krb5/krb5.conf, and still get the same behavior.
What are the permissions on the /etc/krb5 directory? (Should be
0755...)
--
Kevin L. Mitchell [EMAIL PROTECTED]
signature.asc
: Kevin L. Mitchell [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 4:55 PM
To: Eliot Lebsack
Cc: [EMAIL PROTECTED]
Subject: RE: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
On Mon, 2004-07-26 at 16:47, Eliot Lebsack wrote:
I changed the permissions to -rw-r--r
-Original Message-
From: Henry B. Hotz [mailto:[EMAIL PROTECTED]
Sent: Monday, July 26, 2004 3:17 PM
To: [EMAIL PROTECTED]
Cc: Eliot Lebsack
Subject: Re: Solaris pam-krb5 client and MIT krb5 KDC on Linux (Eliot
Lebsack)
If it works as root, but not as a user, then it sounds like a
permissions
16 matches
Mail list logo
