[OpenAFS] krb524 -k fun
Chris McClimans
openafs-info@mcclimans.net
Wed, 27 Aug 2003 16:30:36 -0500
My keytab contains the afs 1-des ticket, but krb524 -k doesn't seem to
want to share it up:
#klist -ket
Keytab name: FILE:/etc/krb5.keytab
KVNO Timestamp Principal
---- -----------------
--------------------------------------------------------
10 08/27/03 15:56:34 afs/cs.ttu.edu@CS.TTU.EDU (DES cbc mode with
CRC-32)
#strace krb524d -k -nofork 2> /tmp/log &
# aklog -d
Authenticating to cell cs.ttu.edu (server oak.cs.ttu.edu).
We've deduced that we need to authenticate to realm CS.TTU.EDU.
Getting tickets: afs/cs.ttu.edu@CS.TTU.EDU
Kerberos error code returned by get_cred: -1765328203
aklog: Couldn't get cs.ttu.edu AFS tickets:
aklog: Key table entry not found while getting AFS tickets
# cat /tmp/log | grep for interestingness
...skipping...
open("/etc/krb5.keytab", O_RDONLY) = 5
nfssvc(0x5) = 0
...skipping....
sendto(4, "\226\307:\265", 4, 0, {sin_family=AF_INET,
sin_port=htons(32782), sin_addr=inet_addr("129.118.18.195")}}, 16) = 4
write(2, "krb524d", 7krb524d) = 7
write(2, ": ", 2: ) = 2
write(2, "Key table entry not found", 25Key table entry not found) = 25
write(2, " ", 1 ) = 1
write(2, "handling packet", 15handling packet) = 15
write(2, "\r\n", 2
) = 2
...skipping....
Is there a way to see the exact ticket it is requesting from krb524?
-chris