Hello,
I've got CIFS working against my MS Active Directory infrastructure, additionally I have successfully configured the LDAP client to access the unix Active Directory attributes for UID/GID/Home Directory, which allows me to use idmap to access the files as the same user from Solaris or Windows without managing separate account databases. The problem I'm having is when I used smbadm to join the domain it apparently creates the krb5.keytab file. The keytab that gets created does not work for enabling Active Directory authentication for interactive logon to the machine. I have set up the pam.conf for this, but when I attempt to log in I get this error: Mar 31 16:19:22 XXXX sshd[822]: [ID 308913 auth.error] PAM-KRB5 (auth): krb5_verify_init_creds failed: Key table entry "host/XXXX.XXXX.com" not found in FILE:/etc/krb5/krb5.keytab I debated on where to post this issue, but since CIFS sets up the keytab currently, I thought this list would be the best. Thanks Corey PS We are really interested in the CIFS functionality integrated with Active Directory, if there is anything specific we can do testing areas we will be more than happy to help out.
_______________________________________________ storage-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/storage-discuss
