[OpenAFS] Openafs+Kerberos

Manel Euro euro_32@hotmail.com
Tue, 17 May 2005 17:32:37 +0000

Hello everyone,

I have some questions related with afs and kerberos.

I have configured openafs with MIT kerberos.
I am able to kinit and aklog to get an afs token.

# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: testAfs@EXAMPLE.NET

Valid starting     Expires            Service principal
05/17/05 11:12:31  05/17/05 21:12:31  krbtgt/EXAMPLE.NET@EXAMPLE.NET
05/17/05 11:12:35  05/17/05 21:12:31  afs@EXAMPLE.NET

Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
Tokens held by the Cache Manager:
Ticket for user (AFS id 505) afs@example.net

On my configurations I have created the afs@EXAMPLE.NET principla and not 
the afs/example.net@EXAMPLE.NET . Will this be a problem?

However, after some time, I get the message:

aklog: Couldn't get example.net AFS tickets:
aklog: Generic error (see e-text) while getting AFS tickets

2- Which pam_krb5afs module should I use. I mean, when  I configure my 
Redhat linux 8.0 clients to use pam_krb5afs.so I cannot login. If I use the 
pam_krb5 module everything works well.

Thank you,

Express yourself instantly with MSN Messenger! Download today - it's FREE!