Solaris 9, Kerberos: Permission denied in replay cache code
Degrande_Samuel
Samuel.Degrande at lifl.fr
Wed Mar 26 12:02:38 EST 2003
According to Reinhard Zierke (Wed, 26 Mar 2003 14:27:13 +0000):
> I'm trying to convince my Suns running Solaris 9 to authenticate via
> Kerberos 5 to a Windows XP LDAP/Active Directory server. Most of
> the stuff seems to work now, but when I lock my CDE screen, I can't
> unlock it with the Kerberos password but get an error message from
> dtsession:
>
> Mar 26 13:05:50 <myhost> dtsession[363]: [ID 928536 user.error] PAM-KRB5 (auth): Failed to verify the TGT host <myhost>.informatik.uni-hamburg.de at INFORMATIK.UNI-HAMBURG.DE: Permission denied in replay cache code
>
> and my Kerberos ticket in /tmp/krb5cc_<myuid> is gone.
>
> What does this mean? Does dtsession think that my office workstation
> <myhost> is the ticket granting server instead of the Windows AD server
> as configured in /etc/krb5/krb5.conf? How can I repair this?
>
> Confused,
> Reinhard
I had the same problem, in an other situation, which was resolved by
applying following patches (Solaris9, sparc) :
112907, 112908, 112921, 112922, 112923, 112924, 112925
Perhaps it may help you too.
--
Samuel Degrande LIFL - UMR 8022 CNRS - Bat M3
Phone: (33)3.20.43.47.38 USTL - Universite de Lille 1
Fax: (33)3.20.43.65.66 59655 VILLENEUVE D'ASCQ CEDEX - FRANCE
More information about the Kerberos
mailing list