[OpenAFS] Help: Can OpenSSH get OpenAFS token after the client login?

Lee Eric openlinuxsource@gmail.com
Sat, 11 Jun 2011 20:31:00 +0800


The systems are using Fedora 14 and the systems can log in each other
by using Kerberos. But it seems after OpenSSH login the client side
cannot get the OpenAFS token. So is there any way to let the client
side get the OpenAFS token after login? Just a guessing, could I use
pam_afs_session in /etc/pam.d/sshd to do this?

[root@client1 ~]# kinit huli
Password for huli@HERDINGCAT.INTERNAL:
[root@client1 ~]# ssh huli@submit.herdingcat.internal
Last login: Sat Jun 11 08:30:24 2011 from client1.herdingcat.internal
Could not chdir to home directory /afs/herdingcat.internal/home/huli:
Permission denied
-bash: /afs/herdingcat.internal/home/huli/.bash_profile: Permission denied

Thanks very much.