[OpenAFS] Windows AD Kerberos - "bad ticket" error
Brandon S. Allbery KF8NH
allbery@ece.cmu.edu
Fri, 26 Feb 2010 13:44:36 -0500
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--Apple-Mail-32--1007615822
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
On Feb 26, 2010, at 13:24 , Jonathan Nilsson wrote:
> [09:57 root@afs1 ~]# kvno -c /tmp/krb5cc_0 afs
> afs@SS2K-DEVEL.UCI.EDU: kvno = 2
> [09:57 root@afs1 ~]# kvno -c /tmp/krb5cc_0 afs/mycell.edu
> afs/mycell.edu@MYCELL.EDU: kvno = 2
You put both of these in the KeyFile? With the same kvno? This will
break, because the KeyFile doesn't contain principals, and picks
entries by kvno. You'll need to change one of them and then
regenerate the KeyFile.
--
brandon s. allbery [solaris,freebsd,perl,pugs,haskell] allbery@kf8nh.com
system administrator [openafs,heimdal,too many hats] allbery@ece.cmu.edu
electrical and computer engineering, carnegie mellon university KF8NH
--Apple-Mail-32--1007615822
content-type: application/pgp-signature; x-mac-type=70674453;
name=PGP.sig
content-description: This is a digitally signed message part
content-disposition: inline; filename=PGP.sig
content-transfer-encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.10 (Darwin)
iEYEARECAAYFAkuIFp8ACgkQIn7hlCsL25W/BgCgzEk4qGzaKFBm2Ma5vSEC480Z
OfwAnRadLr6Nnc4sNM9SVksBm25zv2gm
=Sf0t
-----END PGP SIGNATURE-----
--Apple-Mail-32--1007615822--