Kerberos-Mandrake 9.2

RBR HYXCCCIDDDL at LLKDIOUDF.EDU
Mon Feb 2 12:10:07 EST 2004 

Has anyone had success using Kerberos to authenticate to a Mandrake 9.2
workstation?  I have been working on this for some time now, with no luck
whatsoever.  So far I have done the following.  I installed the following
Mandrake RPM's: krb5-workstation, pam_krb5, and libkrb5, along with the few
dependencies.  I configured system-auth and krb.conf.  I could not login via
KDM, or even at the command prompt using kerberos.  I could login with a
local account, not using kerberos, and then run kinit and get a kerberos
ticket.  I checked syslog and noticed that I get errors loading the
appropriate kerberos libraries in system-auth (see errors below).
After this I tried using RPMS from different sources with the same result.
I then decided to compile both pam_krb5 and libkrb5 from source.  Everything
compiled fine with no errors, but I still get the same errors.  I have had
no problems with kerberos on other distributions.  Any ideas as to what I
might look at next?  For testing purposes I dropped the security level on
Mandrake, made sure all permissions were set correctly on the appropriate
files and directories, and made sure all libraries were linked correctly.

SYSTEM-AUTH


auth        required      /lib/security/pam_env.so
auth        sufficient    /lib/security/pam_unix.so likeauth nullok
auth        sufficient    /lib/security/pam_krb5.so use_first_pass
forwardable
auth        required      /lib/security/pam_deny.so

account     required      /lib/security/pam_unix.so

password    required      /lib/security/pam_cracklib.so retry=3 minlen=4
dcredit=0  ucredit=0
password    sufficient    /lib/security/pam_unix.so nullok use_authtok md5
shadow
password    sufficient    /lib/security/pam_krb5.so use_authtok
password    required      /lib/security/pam_deny.so

session     required      /lib/security/pam_limits.so
session     required      /lib/security/pam_unix.so
session     optional      /lib/security/pam_krb5.so


SYSLOG ERRORS
Jan 27 16:45:09 d-32-64 su: PAM unable to

> dlopen(/lib/security/pam_krb5.so)

> Jan 27 16:45:09 d-32-64 su: PAM [dlerror: /lib/security/pam_krb5.so:

> undefined $

> Jan 27 16:45:09 d-32-64 su: PAM adding faulty module:

> /lib/security/pam_krb5.so

> Jan 27 16:46:55 d-32-64 su: PAM unable to

> dlopen(/lib/security/pam_krb5.so)

> Jan 27 16:46:55 d-32-64 su: PAM [dlerror: /lib/security/pam_krb5.so:

> undefined $

> Jan 27 16:46:55 d-32-64 su: PAM adding faulty module:

> /lib/security/pam_krb5.so

More information about the Kerberos mailing list