kadmin question

Tracy Di Marco White gendalia at gmail.com
Tue Dec 27 04:10:29 EST 2005


On 12/15/05, at hccnet.nl"@ra.nrl.navy.mil Huub <"v.niekerk> wrote:
> Dieter Schicker wrote:
> > Huub wrote:
> >
> >> Dieter Schicker wrote:
> >>
> >>> Huub wrote:
> >>>
> >>>> Hi,
> >>>>
> >>>> I'm setting up a kerberos/heimdal server and according to the steps
> >>>> I'm following I have to do this:
> >>>>
> >>>>  kadmin -p alice/admin
> >>>>  kadmin> add --random-key host/hostname.example.com
> >>>>  kadmin> ext keytab -k /tmp/krb5.keytab-hostname
> >>>>  host/hostname.example.com
> >>>>
> >>>> My question is this: do I have to type host/ just like that or do I
> >>>> have to fill in something?
> >>>
> >>>
> >>>
> >>> Yes, just like that. In this way you create a host service principal.
> >>>
> >>
> >> Now something odd(?): when I (re)boot the system, which is supposed to
> >> be the KDC server, it says it can't find the KDC server. This might be
> >> related to the failure of finding a KDC server when adding a
> >> principle. Any idea what (I) might (be doing)  wrong?
> >
> >
> > Hm. That of course depends on the OS you're using. Make sure you have
> > installed all necessary software for your OS and - supposing it's some
> > sort of *n*x - check your init-Scripts.
>
> Sorry. I should've been clear on that. I'm using NetBSD 2.1/amd64. I'm
> following http://www.public.iastate.edu/~kula/talks/afs-bpw-2005/ which
> looks like a handy way to do it.
> Haven't installed AFS yet since I didn't get to that phase according to
> that link yet.

Make sure you have an /etc/krb5.conf.  I think maybe we didn't
emphasize that nearly enough in our talk, as it's been a fairly common
problem.  An /etc/krb5.conf is necessary on NetBSD, although you don't
need much in it if you have DNS records for your kerberos realm.

-Tracy




More information about the Kerberos mailing list