[OpenAFS] Authentication issues

Rick Cochran rcc2@cornell.edu
Wed, 19 May 2010 17:02:41 -0400

Trying to play by the book, but having no joy.

Windows XP 32-bit

Starting from scratch, I install:

and put the following in C:\Windows\krb5.ini

         default_realm = CIT.CORNELL.EDU
         default_tgs_enctypes = des-cbc-crc
         default_tkt_enctypes = des-cbc-crc
         forwardable = true
         proxiable = true
         noaddresses = true

         CIT.CORNELL.EDU = {
                 kdc = kerberos.cit.cornell.edu:88
                 kdc = kerberos2.cit.cornell.edu:88
                 admin_server = kerberos.cit.cornell.edu
                 default_domain = cit.cornell.edu

         .cit.cornell.edu = CIT.CORNELL.EDU
         cit.cornell.edu = CIT.CORNELL.EDU
         .mail.cornell.edu = CIT.CORNELL.EDU
         mail.cornell.edu = CIT.CORNELL.EDU

I can get K5 tickets using NIM, but not AFS tokens.

I can get AFS tokens using "aklog".

I cannot reconcile these two results.