[OpenAFS] Integrated Windows Logon
Jeffrey Altman
jaltman@secure-endpoints.com
Fri, 06 May 2011 17:22:56 -0400
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigC788D959F480B2CED368AB12
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
On 5/6/2011 4:46 PM, Hugo Monteiro wrote:
> Hi Jeffrey,
>=20
> i'm using DNS to publish AFSDB records and it's able to find the AFS
> servers. But apparently domain translation isn't happening.
>=20
> My /etc/krb5.conf file, at the vldb servers, contains
>=20
> [domain_realm]
> .fct.unl.pt =3D FCT.UNL.PT
>=20
> So i assume it should use the same domain for both cells.
>=20
> I'm sorry if all this seems rather obvious, but the fact is that i don'=
t
> know which road to take.
>=20
> Best Regards,
>=20
> Hugo Monteiro.
I cannot verify that AFSDB records exist from my client systems although
I am able to see SRV records for _kerberos._udp.fct.unl.pt.
What does "aklog -d staff.fct.unl.pt" report when you try to obtain
tokens with a user principal in FCT.UNL.PT?
Jeffrey Altman
--------------enigC788D959F480B2CED368AB12
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (MingW32)
iQEcBAEBAgAGBQJNxGayAAoJENxm1CNJffh4RCcIAJ5Qo1lPAriQW16k+9rVhT/A
qftacm32VCpWnQNsPORyZzv9XSQWmccmOZm3XkKT7GueSIAo7w2ajFgFGYdrIZVp
MHtKtJtz4e5XdaflrenOgZS0B0hJQiUauNuV3hgXB4vJjSo2MyjkIIb3IZlBot10
qOJHJuMnAlh61vxAYvxcOEBMVxRXLVlFPK1/Tr/jEcw2CfRvNsTyVqaGcGkXo1AI
pVpWBGMlil4cHBJ/RnCNlhONdlpDMCpDayY44FhS5Yw1mLG9+KZ6GMvd/jdzu2oC
MW4eqlKhrdclEmVPtck0GN/JT3Ct0iEVLSBhUFXX2NpcABSwI5aucsTrFhlF7fc=
=iLrD
-----END PGP SIGNATURE-----
--------------enigC788D959F480B2CED368AB12--