kadmind ignoring acl?

Johannes russek johannes.russek at io-consulting.net
Wed Jun 16 17:36:53 EDT 2004

hello everybody,
i'm successfully running mit-kerberos 1.2.4 on debian linux.
kadmin.local works as expected, same as all kdc services.
but the kadmind seems to ignore my kadm5.acl, although it seems to open it;
strace shows:
[pid 11585] open("/etc/krb5kdc/kadm5.acl", O_RDONLY) = 12
but when i'm trying to use kadmin to do some things like listprincs, i
always get:
get_principals: Operation requires ``list'' privilege while retrieving list.
i tried several things in the .acl file and ended up trying


but even now i get "Operation requires ``list'' privilege"..
what could i do wrong?
best regards, johannes

More information about the Kerberos mailing list