Question About Kerberos

Danny Lai dannylai at pacific.net.sg
Wed Mar 20 10:29:25 EST 2002


Hi

I am new to Kerberos. Recently, I have installed a Kerberos5 version
1.2.4 on a RedHat 7.2 server with a realm name UNIVERSAL.COM. In the
same server, I also installed a SSH2 version 3.1.0 from SSH
Communication. I compiled the SSH2 source code with
"--with-kerberos5". In addition, I also include the parameters

"AllowedAuthentication kerberos-1 at ssh.com, kerberos-tgt-1 at ssh.com" in
the /etc/ssh2/sshd2_config.

I have no problem to logon to the same machine using Kerberos
authentication.

To test a remote kerberize host, I have installed anonther machine
with RedHat 6.2 and installed with a kerberized SSH2 version 3.1.0
with the same configuration for the /etc/ssh2/sshd2_config. However,
the authentication does not work this round.

(a) Can you indicate which portion is not configured correctly?

(b) I was trying to installed OpenSSH but I can't find any article
mention about configuring OpenSSH with Kerberos V. Where can I locate
any document?

(c) If I am not wrong, for each kerberize host, and allow a kerberos
user to logon to this host, I need to add a same user account name in
the kerberize host /etc/passwd but without password. Is it suppose to
be?

Thank you very much for answering my question.



More information about the Kerberos mailing list