Joining OSX server to windows 2000 AD KDC

Richard E. Silverman res at qoxp.net
Thu Jul 13 14:39:29 EDT 2006 

> 
> Hi All,
> I'm trying to join OSX server 10.4.7 to a windows 2000 Active Directory
> KDC server. After I join the OSX server to the AD server (with
> Directory Acces), I start Server Admin fallow by Open Directory and
> then Settings. I change the Role of the server from Stanalone Server to
> Connected to a Directory system and finally I click on Join Kerberos. I
> fill the fields and receive the error message below when I click the OK
> button:
> 
> Kerberos keytab error. Error while creating the Kerberos keytab file
> for this server.
> 
> I also found in the /Library/Logs/slapconfig.log file this information:
> 
> 2006-07-12 09:00:36 -0400 - slapconfig -sso_util
> 2006-07-12 09:00:36 -0400 - command: /usr/sbin/sso_util configure -r
> MY_KERBOROS_REALM -a KDC_ADM_LOGIN -p **** -v 1 all
> 2006-07-12 09:00:38 -0400 - sso_util command output:
> Contacting the directory server
> Creating the service list
> Creating the service principals
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface

This looks as if the principal kadmin/admin at MY_KERBOROS_REALM is missing.

> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> kadmin: Database error! Required KADM5 principal missing while
> initializing kadmin interface
> 2006-07-12 09:00:38 -0400 - sso_util command failed with status 2
> 
> Anybody have clues on that?

Best regards

Yvan Michaud
System Administrator
University of Sherbrooke


-- 
  Richard Silverman
  res at qoxp.net

More information about the Kerberos mailing list