[OpenAFS] Probleme with aklog

Jacob Volstrup volstrup@s-et.aau.dk
Mon, 19 Feb 2007 11:42:37 +0100 (CET) 

Hi,


On Mon, February 19, 2007 11:31, El Barto wrote:
>  When I log with ssh, I do not obtain afs tokens but I do obtain
> kerberos tickets, and if I type aklog I obtain wrong afs tokens and I
> got a Permission denied on my folders :
>
At our system (Ubuntu) we had to use the modified packages from the Athena
project to let aklog be integrated with pam/logon:
http://web.mit.edu/debathena/www/
We used libpam-openafs-session from the Athena project.

Sincerely, Jacob Volstrup

> elbarto@arcadia> ssh vadot_e@10.242.42.93
> vadot_e@10.242.42.93's password:
> Linux linux-pourri 2.6.18-3-686 #1 SMP Mon Dec 4 16:41:14 UTC 2006 i686
>
> The programs included with the Debian GNU/Linux system are free
> software; the exact distribution terms for each program are described
> in the individual files in /usr/share/doc/*/copyright.
>
> Debian GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
> permitted by applicable law.
> Last login: Mon Feb 19 12:22:37 2007 from arcadia.staff.epita.fr
> vadot_e@test-linux:~$ klist
> Credentials cache: FILE:/tmp/krb5cc_38257
>         Principal: vadot_e@EPITECH.NET
>
>   Issued           Expires          Principal
> Feb 19 11:25:28  Feb 19 22:25:47  krbtgt/EPITECH.NET@EPITECH.NET
> Feb 19 11:25:28  Feb 19 22:25:47  afs@EPITECH.NET
> vadot_e@test-linux:~$ tokens
>
> Tokens held by the Cache Manager:
>
>    --End of list--
> vadot_e@test-linux:~$ aklog
> vadot_e@test-linux:~$ tokens
>
> Tokens held by the Cache Manager:
>
> User's (AFS ID 38257) tokens for afs@epitech.net [Expires Feb 19 22:25]
>    --End of list--
> vadot_e@test-linux:~$ ls -l /afs/epitech.net/users/ept4/vadot_e/
> ls: /afs/epitech.net/users/ept4/vadot_e/: Permission denied
> vadot_e@test-linux:~$
>
>  When I log on physical on the computer it do the same than ssh except
> I automatically got afs tokens without typing aklog. There is a
> problem for the ssh login but my question is not there.
>
>  Why do I got tokens @epitech.net with aklog and @EPITECH.NET (which
> works) with kinit ? Do I got something wrong in my openafs
> configuration ?
>
>  Many thanks and sorry for the long post.
>
> --
> Emmanuel Vadot          System & Network Administrator [root & bocal]
> elbarto@epitech.net     14-16 rue Voltaire 94270 Le Kremlin-Bicetre
> 01 44 08 01 91          06 83 14 62 92
> _______________________________________________
> OpenAFS-info mailing list
> OpenAFS-info@openafs.org
> https://lists.openafs.org/mailman/listinfo/openafs-info
>