Mailinglist Archive: opensuse-security (228 mails)

< Previous Next >
Re: [suse-security] heimdal (kerberos) with openssh
  • From: Roland Kuhn <rkuhn@xxxxxxxxxxxxxxxxxxxxxxxxx>
  • Date: Wed, 23 Mar 2005 20:04:58 +0100
  • Message-id: <76f18e5a3d9df901cadf840b39102bfe@xxxxxxxxxxxxxxxxxxxxxxxxx>
Hi Paul!

On Mar 23, 2005, at 5:36 PM, paul kaiser wrote:

i am using suse professional 9.1.

i have installed heimdal (kerberos) from the distribution cdroms on a realm
server. i have installed openssh from the distribution cdroms on all hosts.
all the hosts are kerberos clients

authentication and ticket granting appear to be working fine on all hosts.
if i am reading the suse manual correctly, i should be able to slogin between
hosts without being asked for a password.

this is actually working from any host to the kerberos server!
however, slogin from the server to any other host
and slogin between any two (non-server) hosts prompts for a password.

i have recompiled openssh
--with-pam --with-kerberos5=/usr/lib/heimdal
but to no avail. the same prompting for password occurs.

any suggestions would be appreciated!

Have you created host principals and stored the relevant keystashes on the respective hosts?


TU Muenchen, Physik-Department E18, James-Franck-Str. 85747 Garching
Telefon 089/289-12592; Telefax 089/289-12570
A mouse is a device used to point at
the xterm you want to type in.
Kim Alm on a.s.r.
< Previous Next >