[OpenAFS] Cross Domain Auth & OpenAFS use

Lars Schimmer schimmer@cg.cs.tu-bs.de
Fri, 15 Jul 2005 10:11:38 +0200

Hash: SHA1


One problem more for me:
I've got two cells in different countries, both working for themself.
One has old builtin krb4 and a krb5 auth, the new one hs only krb5 auth.
Just to understand it:
I want to get tokens in cell a for cell b and other way round.
And I want to get krb5 tickets from cell a on b and other way round.
Right now I get a ticket from cell a in cell b, but no ticket from cell b in
cell a, I think thats kinda firewall problem.
But even with a ticket from cell a in cell b, I can't get a token for cell a and
 can't browse the afs of cell a.
Do I have to generate a new key entry for cell a in kerberos of cell b and other
way round?

And another small problem: the root.afs is mounted rl, is there a easy way to
make a new entry under /afs instead of removing all root.cell.readonly and make
the changes, or not?

Lars Schimmer
- --
- -----------------------------------------------------------------
Technische Universität Braunschweig, Institut für Computergraphik
Tel.: +49 531 391-2109            E-Mail: schimmer@cg.cs.tu-bs.de
PGP-Key-ID: 0xB87A0E03

Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org