Is there any relation beetween KRB5_KDC_UNREACH error code and dns_lookup_kdc (krb5.conf) ?
Sylvain RICHET
akamanouche at gmail.com
Mon Jan 4 12:25:07 EST 2010
Hi Everyone
Happy New Year !
I'm trying to access a webapp (Apache2 + mod_auth_kerb) via Firefox
(NegociateAuth library, about:config negociate.nego*), protected by a
Kerberos Realm
In the /var/log/apache2/error.log, this error :
[...]
[Mon Jan 04 16:29:20 2010] [debug] src/mod_auth_kerb.c(691): [client
127.0.0.1] Trying to get TGT for user srichet at BEEWAREKERB
[Mon Jan 04 16:29:21 2010] [error] [client 127.0.0.1]
krb5_get_init_creds_password() failed: Cannot resolve network address
for KDC in requested realm
[...]
I realized that in /etc/krb5.conf, directive "dns_lookup_kdc" is set
to false.
==> So, my question :
is there any relation beetween this error code (KRB5_KDC_UNREACH) and
the "dns_lookup_kdc" directive ?
Thanks in advance
More information about the Kerberos
mailing list