[OpenAFS] Snow Leopard (OS X 10.6) and kerberos ssh logins
Adeyemi Adesanya
yemi@slac.stanford.edu
Tue, 8 Sep 2009 13:18:04 -0700
Quick update:
Although I am currently unable to perform Kerberos ssh logins using
passwords (as documented in the pam_krb5 man page), I can login by
passing a valid ticket using GSSAPIAuthentication.
-------
Yemi
On Sep 1, 2009, at 10:23 AM, Adeyemi Adesanya wrote:
>
> BTW, the following message is logged to /var/log/secure.log each
> time I attempt to perform a kerberos ssh login:
>
> "in pam_sm_authenticate(): Failed to determine Kerberos principal
> name."
>
> I should mention that I can perform kerberos logins from the console
> without any problems.
>
> -------
> Yemi
>
> On Sep 1, 2009, at 10:12 AM, Adeyemi Adesanya wrote:
>
>>
>> I've installed the official release of Snow Leopard and I'm running
>> OpenAFS 1.4.11 without any trouble. Apple have bundled a more
>> recent version of OpenSSH (5.2p1). Apple support actually sent me
>> message claiming that the Kerberos credentials cache issue in 10.5
>> is now fixed in 10.6 but I'll believe it when I see it. What's
>> interesting is that the sshd pam stack (/etc/pam.d/sshd) now
>> includes pam_krb5 . Has anyone successfully logged into a Snow
>> Leopard system via ssh using kerberos authentication? I haven't got
>> it working yet.......
>>
>>
>> -------
>> Yemi
>> _______________________________________________
>> OpenAFS-info mailing list
>> OpenAFS-info@openafs.org
>> https://lists.openafs.org/mailman/listinfo/openafs-info
>