[OpenAFS] bos -localauth not working
Thu, 15 Apr 2010 15:46:07 -0400 (EDT)
On Thu, 15 Apr 2010, Derrick Brashear wrote:
> does localauth work after a bosserver restart?
Glad it was something simple!
> On Thu, Apr 15, 2010 at 3:37 PM, Stephen Joyce <email@example.com> wrote:
>> I just added a new key to the KeyFile on my db and file servers. This key is
>> for my campus's central krb5 realm.
>> Everything seems to be functioning normally regarding tickets and tokens. I
>> can kinit and aklog using tickets from the foreign krb5 realm and manipulate
>> files and folders in my cell.
>> However when I tried to use the -localauth flag to bos to restart server
>> processes, it no longer works. It does work if I have tokens rather than
>> using -localauth.
>> Everything else appears to be working fine, but I'd like to recover the
>> ability to use -localauth if at all possible. Errors I get:
>> (no tokens, but I am root):
>> # bos restart fs5 -all -localauth
>> bos: failed to restart srevers (ticket contained unknown key version number)
>> # kinit user/admin
>> (valid password entered)
>> # aklog
>> # bos restart fs5 -all
>> I've double-checked the new kvno is as expected, and have no problems on the
>> clients. So far the only symptom is bos.
>> What could I have missed?
>> Servers are OpenAFS 1.4.5 on Linux (yes, I know it's old. Upgrades are
>> planned, but not *right now*).
>> Cheers, Stephen
>> OpenAFS-info mailing list