Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] heimdal (kerberos) with openssh
  • From: Roland Kuhn <rkuhn@xxxxxxxxxxxxxxxxxxxxxxxxx>
  • Date: Thu, 24 Mar 2005 15:28:59 +0100
  • Message-id: <2fea3d449c616f204d76d98f76c6a553@xxxxxxxxxxxxxxxxxxxxxxxxx>
Hi Paul!

On Mar 24, 2005, at 3:10 PM, paul kaiser wrote:

i created a principals in the database using kadmin -l.

i copied the information regarding the local host to /etc/krb5.keytab and
/etc/srvtab on each local host using ktutil get. from reading the literature i
am assuming /etc/krb5.keytab contains only the principals for that particular
host, and not the principals for every host.

Have you checked that after the (unsuccessful) slogin attempt you really have a service ticket for the target host? Next thing to check would be the logfile at the target host...

Concerning the commands I have no idea as I use only MIT Kerberos (and there kadmin doesn't have a "-l" option).


TU Muenchen, Physik-Department E18, James-Franck-Str. 85747 Garching
Telefon 089/289-12592; Telefax 089/289-12570
A mouse is a device used to point at
the xterm you want to type in.
Kim Alm on a.s.r.
< Previous Next >