kadmin.local: Cannot find/read stored master key

Marcel Karras toka at freebits.de
Wed Jul 7 02:53:55 EDT 2004 

On Thu, 1 Jul 2004 22:35:07 +0200
Marcel Karras <toka at freebits.de> wrote:

> Hello,
> 
> I've got problems setting up Krb5 on my Crux Linux host.
> I did all nessessary things and always get stuck at the point trying
> to create the keytab file with kadmin.local.
> The program says:
> 
> Authenticating as principal root/admin at TESTSERVER.FREEBIS.DE with
> password. 
> kadmin.local: Cannot find/read stored master key while
> initializing kadmin.local interface
> 
> Here is my /etc/krb5.conf:
> ---------------------------------------------------------------------
> [libdefaults]
>         default_realm = TESTSERVER.FREEBIS.DE

My fault                                    ^ - a T is missing

>         dns_lookup_realm = false
>         dns_lookup_kdc = false
> 
> [realms]
>         FREEBIS.DE = {
>                 kdc = 62.27.20.125:88
>                 admin_server = 62.27.20.125:750
>                 default_domain = localhost
>         }
> 
> 
> [domain_realm]
>         .localhost = TESTSERVER.FREEBITS.DE
>         localhost = TESTSERVER.FREEBITS.DE
> 
> [logging]
>         default = FILE:/var/log/krb5libs.log
>         kdc = FILE:/var/log/krb5kdc.log
>         admin_server = FILE:/var/log/kadmind.log
> 
> [kdc]
>         profile = /var/krb5kdc/kdc.conf
> ---------------------------------------------------------------------
> --
> 
> Here is my /var/krb5kdc/kdc.conf:
> ---------------------------------------------------------------------
> --[kdcdefaults]
>         kdc_ports = 750,88
> 
> [realms]
>         TESTSERVER.FREEBITS.DE = {
>                 master_key_type = des-cbc-crc
> 		database_name = /var/krb5kdc/principal
>                 admin_keytab = FILE:/var/krb5kdc/kadm5.keytab
>                 acl_file = /var/krb5kdc/kadm5.acl
>                 key_stash_file =
>                 /var/krb5kdc/.k5.TESTSERVER.FREEBITS.DE kdc_ports =
>                 750,88 max_life = 10h 0m 0s
>                 max_renewable_life = 7d 0h 0m 0s
>         }
> ---------------------------------------------------------------------
> --
> 
> Any help would be very appreciative.
> 
> Greetings from Germany
> - Marcel Karras
> 
> --
> Contact: toka at freebits.de
> http://www.freebits.de
> Unix, Linux && OpenSource


-- 
Contact: toka at freebits.de
http://www.freebits.de
Unix, Linux && OpenSource

More information about the Kerberos mailing list