Problems with KDC

" Vladimir " Vladimir
Thu Nov 27 05:33:01 EST 2003 

Hello everyone!!!

On my OpenBSD 3.4 box I try to install my kerberosV kdc. My /etc/kerberosV/krb5.conf :

[libdefaults]
        # Set the realm of this host here
        default_realm = DOMAIN.RU

        # Maximum allowed time difference between KDC and this host
        clockskew = 300

        # Uncomment this if you run NAT on the client side of kauth.
        # This may be considered a security issue though.
        # no-addresses = yes

[realms]
        MY.REALM = {
                # Specify KDC here
                kdc = 192.168.1.75

        }
# This sections describes how to figure out a realm given a DNS name

[kadmin]
        # This is the trickiest part of a Kerberos installation. See the
        # heimdal infopage for more information about encryption types.

        # For a k5 only realm, this will be fine
        default_keys = v5

[logging]
        # The KDC logs by default, but it's nice to have a kadmind log as well.
        kadmind = FILE:/var/heimdal/kadmind.log

I successfully setting up database with kstash and kadmin -l and added a new user ME .
But when I tryed to kiinit ME I see :
kinit: krb5_get_init_creds: unable to reach any KDC in realm DOMAIN.RU .
When I try to klist :
bash-2.05b# klist
klist: No ticket file: /tmp/krb5cc_0

My log files have no records about kerberos errors.
If i try :
bash-2.05b# kadmin -l
kadmin> dump
q at DOMAIN.RU 1:1:16:6941ebe8ff962bcd9e52e7e47581fdfa217aab633bd06109231a00d031ed135e40f243dd88d8ee083457f0eca6ac5be2e18b02eb:-:1:3:ae92b27256d8b46cf9079f9d08ec6a87d15550fa53d61ab3052b11bc91a52b505a72d832:-:1:2:83379b68e7853e1a57296111ddcf0e678b483b19ce3e867b7f4c2d02e24ff9e6833b24ce:-:1:1:892fd804e8f357e8bc089e45dde2788cdeb320a837c15502726ca4151a1ede75ee81b86e:- 20031127102224:kadmin/admin at DOMAIN.RU - - - - 86400 604800 126 20031127102224:64426:0
me at DOMAIN.RU 1:1:16:14e5d30726ac86be6a4e06c4d742214e94efd44f4d83d28bd471e65a404b5abb70a4e25b4dd3fcc31b361b93543be075b951302d:-:1:3:d522e2ece567b5652e9d261ca6a9f375b087a21859b0abf5ef4e2d504250a2f407a181a8:-:1:2:9cf4d3cac3647aef0066fca6e71c084a1fed5efe55795e6e380f4519a841eef9cad7d1b4:-:1:1:17a7dab802604a0083c7bac66da7bd522c2418456d2622d5be02405224099ac8b4e73e4c:- 20031127094221:kadmin/admin at DOMAIN.RU - - - - 86400 604800 126 20031127094221:337652:0

All kerbros processes are started :
root     32224  0.0  0.2   152    72 C0- S      1:12PM    0:00.04 /usr/libexec/kdc
root     10765  0.0  0.0   116     4 C0- I      1:12PM    0:00.03 /usr/libexec/kadmind
root      9367  0.0  0.0   108     4 C0- I      1:12PM    0:00.03 /usr/libexec/kpasswdd

I have no firewall on this machine and kerboros listen his ports :
tcp        0      0  192.168.1.75.88        *.*                    LISTEN
tcp        0      0  127.0.0.1.88           *.*                    LISTEN
udp        0      0  192.168.1.75.88        *.*
udp        0      0  127.0.0.1.88           *.*


Why I have errors?

With best regards,
   Potapov Vladimir.

More information about the Kerberos mailing list