[OpenAFS] Cannot obtain a token from AFS-Client on Debian and WinXP
Thomas Grieder
openafs@gmx.net
Tue, 7 Jan 2003 06:24:16 +0100
On Sunday 05 January 2003 22:39, Charles Clancy wrote:
> On Sun, 5 Jan 2003, Thomas Grieder wrote:
> > On Sunday 05 January 2003 18:53, Charles Clancy wrote:
> > > What's the output of "aklog -d" in each case?
> >
> > Authenticating to cell afs.cell (server server.network.local).
> > We've deduced that we need to authenticate to realm AFS.CELL.
> > Getting tickets: afs/afs.cell@AFS.CELL
> > Kerberos error code returned by get_cred: -1765328377
> > aklog: Couldn't get afs.cell AFS tickets:
> > aklog: Server not found in Kerberos database while getting AFS ticket=
s
>
> Did you create the afs/afs.cell@AFS.CELL principal in your KDC, and do =
the
> whole key synchronization thing? You may have instead created an
> afs@AFS.CELL principal (depending on whose directions you were followin=
g)
> and your less intelligent version of aklog that doesn't check for both
> afs@AFS.CELL and afs/afs.cell@AFS.CELL.
>
> Did you create either of the AFS principals in your Kerberos realm?
>
This are my entries in KDC:
kadmin.local: listprincs
K/M@universum.space
admin@universum.space
afs/universum.space@universum.space
afs@universum.space
kadmin/admin@universum.space
kadmin/changepw@universum.space
kadmin/history@universum.space
krbtgt/universum.space@universum.space
thomas@universum.space
afs.cell =3D> universum.space (Sorry)
router:~# cat /etc/openafs/CellServDB
>universum.space #Cell name
192.168.0.3 #router
I added afs/universum.space@universum.space but I still receive the same =
error=20
message... :-(
How do I realize the key synchronization? Sorry about this maybe simple=20
questions but its realy hard to find any/a complete how to.
Thomas