[OpenAFS] openAFS 1.4.4 - ticket contained unknown key version number
Hamish
hamish@travellingkiwi.com
Fri, 26 Oct 2007 17:49:35 +0100
On Friday 26 October 2007 17:17, Christopher D. Clausen wrote:
> Hamish <hamish@travellingkiwi.com> wrote:
> > Why the heck do I get an unknown key version when trying to do
> > anything? I've googled till I'm blue in the face and have only found
> > some really really old emails asking questions with no answers... The
> > Wiki seems devoid of any info unless it's using kaserver when it
> > comes to krb at all...
>
> I suspect that your KeyFile contains an entry where the kvno on the KDC
> does not match. Delete your KeyFile, recreate a keytab and re-run
> asetkey (using the proper kvno) to generate a good KeyFile. Copy this
> KeyFile to all of your AFS servers and restart all of them.
>
Thanks. I'd just taken that route when I got your reply. (I think I probably
stuffed it up trying to build the second machine & rerunning some of the
commands that should only have been run once. Joys of trying to adapt a
readme I found on the internet that only deals withinstalling a single
machine :).
The local machine works fine now. But when I try to run a command remotely
(e.g. run bos restart from the first server against the second server I
installed) it fails with
'(you are not authorised for this operation)'
Both work locally though... And if I append -localauth to the command on
machine1 to restart machine2 it works...
Hamish.