[OpenAFS] question about authentication with kerberos and Default principal

Gary Gatling gsgatlin@ncsu.edu
Sat, 3 Mar 2018 15:20:39 -0500


--001a113fbdc8969f1f056687d3a4
Content-Type: text/plain; charset="UTF-8"

On Sat, Mar 3, 2018 at 12:14 PM, Harald Barth <haba@kth.se> wrote:

>
> Hm. If I remember correct, at least parts of the kerberos ticket in
> the ticket cache are endian dependent. As the principal name seems to
> be broken to start with, maybe the error is there. Do you have the
> same problems if you use the FILE: ticket cache type or the kinit and
> afslog from heimdal to handle tickets and tokens?
>
>

Does  heimdal-klist use /etc/krb5.conf or does it use some other
configuration file? I'm worried I did not set up a config file.

[gsgatlin@localhost ~]$ /usr/bin/heimdal-kinit gsgatlin
gsgatlin@LOCALDOMAIN's Password:
heimdal-kinit: krb5_get_init_creds: unable to reach any KDC in realm
LOCALDOMAIN

Also, going back to the krb5 kinit, how can you specify a FILE: ticket
cache type ?

Sorry for stupid questions. I have never used heimdal before. Thanks a lot.

--001a113fbdc8969f1f056687d3a4
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_extra"><br><div class=3D"gmail_quote">=
On Sat, Mar 3, 2018 at 12:14 PM, Harald Barth <span dir=3D"ltr">&lt;<a href=
=3D"mailto:haba@kth.se" target=3D"_blank">haba@kth.se</a>&gt;</span> wrote:=
<br><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;bor=
der-left:1px solid rgb(204,204,204);padding-left:1ex"><br>
Hm. If I remember correct, at least parts of the kerberos ticket in<br>
the ticket cache are endian dependent. As the principal name seems to<br>
be broken to start with, maybe the error is there. Do you have the<br>
same problems if you use the FILE: ticket cache type or the kinit and<br>
afslog from heimdal to handle tickets and tokens?<br><span class=3D"gmail-H=
OEnZb"><font color=3D"#888888"><br></font></span></blockquote><div><br></di=
v><div><br></div><div>Does=C2=A0=C2=A0heimdal-klist use=C2=A0/etc/krb5.conf=
 or does it use some other configuration file? I&#39;m worried I did not se=
t up a config file.</div><div><br></div><div><div>[gsgatlin@localhost ~]$ /=
usr/bin/heimdal-kinit gsgatlin</div><div>gsgatlin@LOCALDOMAIN&#39;s Passwor=
d:=C2=A0</div><div>heimdal-kinit: krb5_get_init_creds: unable to reach any =
KDC in realm LOCALDOMAIN</div></div><div><br></div><div>Also, going back to=
 the krb5 kinit, how can you specify a=C2=A0FILE: ticket cache type ?=C2=A0=
</div><div><br></div><div>Sorry for stupid questions. I have never used=C2=
=A0heimdal before. Thanks a lot.</div></div><br></div></div>

--001a113fbdc8969f1f056687d3a4--