[OpenAFS] AIX 5.3 and aklog_dynamic_auth fail
Remi Ferrand
remi.ferrand@cc.in2p3.fr
Mon, 22 Jun 2009 09:51:26 +0200
Thanks for your help.
It did the trick ;-)
--
Remi Ferrand | Institut National de Physique Nucleaire
Tel. +33(0)4.78.93.08.80 | et de Physique des Particules
Fax. +33(0)4.72.69.41.70 | Centre de Calcul - http://cc.in2p3.fr/
On Fri, 2009-06-19 at 07:47 -0600, Karen Eldredge wrote:
> We moved both the aklog and aklog_dynamic_auth to /usr/vice/etc, and we use
> LDAP as the backend.
>
> Our methods file looks like this:
>
> LDAP:
> program = /usr/lib/security/LDAP
> program_64 =/usr/lib/security/LDAP64
>
> KRB5:
> program = /usr/lib/security/KRB5
> program_64 = /usr/lib/security/KRB5_64
> options = authonly,kadmind=no
>
> KRB5LDAP:
> options = db=LDAP,auth=KRB5
>
> K5AFS:
> program = /usr/vice/etc/aklog_dynamic_auth
> options = authonly
>
> Our user entries look like this:
>
> USERID:
> SYSTEM = "(KRB5LDAP[SUCCESS] and K5AFS) OR KRB5LDAP"
> registry = KRB5LDAP
>
>
> If you don't use LDAP, then the options = db=LDAP and KRB5LDAP will be
> different. Hope this helps.
[...]