[OpenAFS] Screwy keys? OpenAFS pts (and other) problems with MIT KDC
Jeff Blaine
jblaine@kickflop.net
Thu, 18 May 2006 18:36:53 -0400
Can anyone please tell me what I am doing wrong here?
It would be greatly appreciated.
bash-2.05# asetkey list
kvno 5: key is: BLAHBLAH # see below
All done.
bash-2.05# unlog
bash-2.05# kdestroy
bash-2.05# kinit admin
Password for admin@JBTEST:
bash-2.05# aklog -d
Authenticating to cell jbtest (server noodle.foo.com).
We've deduced that we need to authenticate to realm JBTEST.
Getting tickets: afs/jbtest@JBTEST
Using Kerberos V5 ticket natively
About to resolve name admin to id in cell jbtest.
Id 1
Set username to AFS ID 1
Setting tokens. AFS ID 1 / @ JBTEST
bash-2.05# pts membership system:administrators
pts: ticket contained unknown key version number so couldn't look up names
bash-2.05# klist -keK
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
----
--------------------------------------------------------------------------
5 host/192.168.168.3@JBTEST (DES cbc mode with CRC-32) (stuff)
5 host/192.168.168.3@JBTEST (DES cbc mode with CRC-32) (stuff)
14 host/noodle.foo.com@JBTEST (DES cbc mode with CRC-32) (stuff)
14 host/noodle.foo.com@JBTEST (DES cbc mode with CRC-32) (stuff)
5 cvs/noodle.foo.com@JBTEST (DES cbc mode with CRC-32) (stuff)
5 cvs/192.168.168.3@JBTEST (DES cbc mode with CRC-32) (stuff)
5 afs/jbtest@JBTEST (DES cbc mode with CRC-32) (0xBLAHBLAH)