[OpenAFS] Kerberos 5, AFS, and no krb524d
Derek Atkins
warlord@MIT.EDU
09 Jun 2003 17:20:44 -0400
"Douglas E. Engert" <deengert@anl.gov> writes:
> > henken@roughneck henken $ aklog -d
> > Authenticating to cell roughneck.liniac.upenn.edu (server
> > roughneck.liniac.upenn.edu).
> > We've deduced that we need to authenticate to realm UPENN.EDU.
> > Getting tickets: afs/roughneck.liniac.upenn.edu@UPENN.EDU
> > About to resolve name henken to id in cell roughneck.liniac.upenn.edu.
> > Id 2
> > Set username to AFS ID 2
> > Setting tokens. AFS ID 2 / @ UPENN.EDU
> > henken@roughneck henken $
I'm not sure what the the AFS ID 2 / @ UPENN.EDU is all about.
Your "tokens" output certainly looked normal.
> > > I would have expected Derek's /usr/afs/etc/Realms to have solved your problem.
> >
> > Hrm -- I grep'd the openafs-1.2.9 source for 'Realms' and got no hits --
> > where in the source does it look at this file ?
>
> I did not see it either.
FTR I suggested that file because one of the sipb.mit.edu AFS Servers
had that in its configuration. It may not be necessary (or needed)
anymore...
I have never actually set up an AFS cell using an afs/cell@REALM (for
cell != REALM) principal name using OpenAFS.. I maintain such cells,
but I haven't set one up from scratch.
May I suggest you rm -rf /usr/afs and start over again? ;)
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord@MIT.EDU PGP key available