[OpenAFS] Mit Krb5 and OpenAFS

Derek T. Yarnell derek@cs.umd.edu
Fri, 18 Jan 2002 12:54:17 -0500 

On Fri, 18 Jan 2002, Derrick J Brashear wrote:

>
>> So i added a key value of 0 because there was no key. 
>
>added to the kdc? explain what you mean by "value of 0"
>

I did : 
kadmin.local -q "modprinc -kvno 0 afs@CS.UMD.EDU"

>> Which extreacted a key value of 1 which i added to the AFS KeyTab with
>> asetkey.
>
>Contingent on the answer to the abovev that may be ok.
>
>> aklog: unable to obtain tokens for cell cs.umd.edu (status: 11862791).
>
>11:53am:shadow@johnstown:krb:9> translate_et 11862791
>11862791 (ktc).7 = Cache Manager is not initialized / afsd is not running
>
>> Could this be that krb524d is not doing the right thing? Or am i missing 
>> something?
>
>yeah, klog won't work while you have no client running.

So this is because i haven't finished the afs setup? 

So i am here : 
http://www.openafs.org/pages/doc/QuickStartUnix/auqbg002.htm#ToC_66

and if i do the kas stuff it just says [____] server or network not responding 
.

But this is good right? Because i am not supposed to have the kaserver running 
and
kas talks to the kaserver?

6 looks fine :
 # ./bos adduser <machine name> admin -cell <cell name> -noauth
but 7 looks like what i was adding with the asetkey stuff :
 # ./bos listkeys <machine name> -cell <cell name> -noauth
	key 0 has cksum checksum 

9 is where you add ptserver entries aka :
 # ./pts createuser -name admin -cell <cell name> [-id <AFS UID>]  -noauth
	User admin has id AFS UID

also,
[root@bungholio]# klist -e
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: derek@CS.UMD.EDU

Valid starting     Expires            Service principal
01/18/02 11:51:41  01/18/02 21:51:41  krbtgt/CS.UMD.EDU@CS.UMD.EDU
        Etype (skey, tkt): DES cbc mode with CRC-32, DES cbc mode with CRC-32 
01/18/02 11:51:57  01/18/02 21:51:41  afs@CS.UMD.EDU
        Etype (skey, tkt): DES cbc mode with CRC-32, DES cbc mode with CRC-32 


Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached

So derek it looks like i have des keys and not 3des.

>> Do i skip down to number 9 and start adding things into the ptserver? with p
>ts?
>> or only 6 where i need to add users to the bos server?
>
>Without looking, to 6 and not to 9.

-- 
Derek Yarnell
CS System Staff
derek@cs.umd.edu
	
.				

   ... INDEED!