[OpenAFS] Token discarding
Charles Clancy
security@xauth.net
Thu, 7 Nov 2002 19:47:54 -0600 (CST)
> > > > 19270408 (rxk).8 = ticket contained unknown key version number
>
> Okay, it didn't say much of anything and neverhad me do anything with
> the keytab generated, so where do I put it and how do I sync
> everything up?
>From Ken Hornstein's AFS-Kerberos Migration guide:
(My unofficial mirror: http://ismene.csl.uiuc.edu/afs-mig/doc/README.txt)
1) Create an AFS principal in the Kerberos database. Call it:
afs@YOUR.CELL.NAME
The password doesn't matter; it will be changed. Use "modprinc" to
give it a kvno that is the _same_ as the highest kvno in your
AFS KeyFile, e.g.:
% ./asetkey list
kvno 3: key is: ...
kvno 5: key is: ...
All done.
% kadmin.local -q "modprinc -kvno 5 afs@YOUR.CELL.NAME"
[ t charles clancy ]--[ tclancy@uiuc.edu ]--[ www.uiuc.edu/~tclancy ]