[OpenAFS-devel] question about aklog and latest OAFS release...
Derek Atkins
warlord@MIT.EDU
09 Nov 2001 10:39:22 -0500
Jim Doyle <doyle@theworld.com> writes:
> Has anyone else encountered this before I start running into the sources?
> Also - where are the sources for aklog?? They appear not to be in
> openafs-1.2.2.src.tar.bz2 ?
Well, DUH. Try installing the openafs SRPM to find the sources. ;)
Aklog is not a part of OpenAFS (notice that you had to install the
'openafs-krb5' package). It's separated out for a multitude of
reasons, the first being that the source is separate.
> Here's the demo of what I am seeing wrong:
> Valid starting Expires Service principal
> 11/09/01 03:34:10 11/09/01 13:34:10 krbtgt/EXAMPLE.COM@EXAMPLE.COM
> 11/09/01 03:34:14 11/09/01 13:34:10 afs@EXAMPLE.COM
Ok, it's getting you a ticket..
> User's (AFS ID 2) tokens for afs@example.com [Expires Nov 9 13:34]
And a token..
> [root@prozac /root]# touch /afs/example.com/users/jrd/foobar
> touch: creating `/afs/example.com/users/jrd/foobar': Permission denied
> [root@prozac /root]# vos release root.cell
> rxk: security object was passed a bad ticket
But this seems to imply that somewhere along the lines the ticket is
being busted. You do have krb524d running, right? Is your AFS ID
really "2"?
Aklog was certainly working for me on my RH6.2 laptop running against
MIT's AFS cell. Unfortunately I don't have that laptop anymore, so I
can't go back and test it again.
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord@MIT.EDU PGP key available