[OpenAFS] OpenAFS for Windows 1.5.72, Windows 7, VPN session
killing
Jeff Blaine
jblaine@kickflop.net
Sun, 14 Mar 2010 18:04:36 -0400
On 3/14/2010 2:22 PM, Jeffrey Altman wrote:
> On 3/14/2010 12:14 PM, Jeff Blaine wrote:
>>> the MIT klist.exe tells you.
>>
>>
>> Yes, but it won't say anything useful when one has no creds
>> because the VPN session is dying before that :)
>>
>> I meant, "how do I determine what it *would* try to use?"
>
> Funny thing. When I have no credentials and run klist.exe, it tells me
> which cache it cannot find any credentials within.
>
> [C:\src\openafs\openafs.git\repo\src\WINNT]"\Program
> Files\mit\Kerberos\bin\klist.exe"
> klist.exe: No credentials cache found (ticket cache
> API:jaltman@YOUR-FILE-SYSTEM.COM)
Indeed. My apologies.
>> As for krb5.ini, there is no 'master_kdc' setting. I've
>> never heard of it and don't see that in the MIT Kerberos
>> documentation for krb5.conf (?)
>>
>
> Another funny thing. When I look at the docs for MIT Kerberos I find
> http://web.mit.edu/kerberos/krb5-1.6/krb5-1.6/doc/krb5-admin.html#realms%20%28krb5.conf%29
Indeed. My apologies.
I am apparently getting very senile.
> If you add a master_kdc=kdc1.our.org you should find that the DNS SRV
> queries for _master_kdc._udp.RCF.OUR.ORG are no longer being issued.
Sounds like a fitting addition to make.
Thanks.
>> I'm downloading the Windows Driver Development Kit 620MB ISO
>> which is where the "Debugging Tools for Windows" now exist
>> apparently.
>
> You do not have to have the most bleeding edge version. One of the
> standalone installs would work just fine.
Ah, I wasn't sure. I'll try one of those.