[OpenAFS] Problem with klog

David Robson David.Robson@jet.uk
Fri, 29 May 2009 12:06:38 +0100


Hi,


I have been trying to set up a test AFS cell on Fedora 10.  I have been following
a web page "Creating a New Cell on Fedora", that was at www.dementia.org a few
weeks ago, but now seems to have disappeared.  Fortunately, I have a paper copy

I have set up an AFS cell, a partition a volume and a user and an acl.

On the server machine, I can authenticate as the user with kadmin and aklog,
and then I have read/write access to the user's /afs home directory.  All
good so far.

However, I can't authenticate with klog, on the AFS server, or on client
machines.

If I run "klog <username>", I get the error message

"Unable to authenticate to AFS because Authentication Server was unavailable."

After a bit of googling, I find that I should be running the kaserver, I
do so by running /usr/afs/bin/kaserver as root in the xterm.  How should
it be run, and with which arguments??

With kaserver running, I now get the error ...

"Unable to authenticate to AFS because user doesn't exist."

But the user exists!  I created it with kadmin -q "addprinc <username>"

Further googling suggests I shouldn't be running kaserver, but kdc.
However I AM running krb5kdc, but it doesn't seem to be listening on
the same port as kaserver (7004)

I am confused and stuck.  Can anyone put me in the right direction?

Dave

P.S

I am running

krb5-devel-1.6.3-18.fc10.i386
pam_krb5-2.3.2-1.fc10.i386
python-krbV-1.0.13-7.fc9.i386
openafs-krb5-1.4.8-fc10.1.1.i386
krb5-server-1.6.3-18.fc10.i386
krb5-auth-dialog-0.7-7.fc9.i386
krb5-workstation-1.6.3-18.fc10.i386
krb5-libs-1.6.3-18.fc10.i386
openafs-client-1.4.8-fc10.1.1.i386
kmod-openafs-1.4.8-1.2.2.6.27.15_170.2.24.fc10.i686
openafs-server-1.4.8-fc10.1.1.i386
openafs-krb5-1.4.8-fc10.1.1.i386
openafs-1.4.8-fc10.1.1.i386