krb5kdc won't start (debian)

Rudy Gevaert rgevaert at elis.ugent.be
Mon Jan 10 11:50:42 EST 2005


Hello,

I'm trying to get kerberos to work (first time). I'm using debian and
installed the krb5-kdc, krb5-admin-server and the packages that are
needed for those.

When starting /etc/init.d/krb5-kdc I get the following in auth.log

Jan 10 17:35:40 testbak krb5kdc[3960]: setting up network...
Jan 10 17:35:40 testbak krb5kdc[3961]: commencing operation
Jan 10 17:35:40 testbak krb5kdc[3961]: Network not initialized - while 
processing network requests
Jan 10 17:35:40 testbak krb5kdc[3961]: Network not initialized - while 
shutting down network
Jan 10 17:35:40 testbak krb5kdc[3961]: shutting down

I can start /etc/init.d/krb5-admin-server without problem.

(My machines are on a local netwerk gevaert)
These are my config files: 

testbak:/etc# cat krb5.conf
[libdefaults]
        default_realm = GEVAERT
        dns_lookup_kdc = true
        dns_lookup_realm = false

# The following krb5.conf variables are only for MIT Kerberos.
        krb4_config = /etc/krb.conf
        krb4_realms = /etc/krb.realms
        kdc_timesync = 1
        ccache_type = 4
        forwardable = true
        proxiable = true
        v4_instance_resolve = false
        v4_name_convert = {
                host = {
                        rcmd = host
                        ftp = ftp
                }
                plain = {
                        something = something-else
                }
        }

[realms]
        GEVAERT = {
                kdc = testbak.gevaert
                admin_server = testbak.gevaert
                default_domain = gevaert
        }


[domain_realm]
        .gevaert = GEVAERT
        gevaert = GEVAERT

        .mit.edu = ATHENA.MIT.EDU
        mit.edu = ATHENA.MIT.EDU
        .media.mit.edu = MEDIA-LAB.MIT.EDU
        media.mit.edu = MEDIA-LAB.MIT.EDU
        .whoi.edu = ATHENA.MIT.EDU
        whoi.edu = ATHENA.MIT.EDU
.stanford.edu = stanford.edu

[login]
        krb4_convert = true
        krb4_get_tickets = true



testbak:/etc/krb5kdc# cat kadm5.acl
rgevaert/admin at GEVAERT *


[kdcdefaults]
        kdc_ports = 750,88

[realms]
GEVAERT= {
                database_name = /var/lib/krb5kdc/principal
                admin_keytab = FILE:/etc/krb5kdc/kadm5.keytab
                acl_file = /etc/krb5kdc/kadm5.acl
                key_stash_file = /etc/krb5kdc/stash
                kdc_ports = 750,88
                max_life = 10h 0m 0s
                max_renewable_life = 7d 0h 0m 0s
                master_key_type = des3-hmac-sha1
                supported_enctypes = des3-hmac-sha1:normal des-cbc-crc:normal 
des:normal des:v4 des:norealm des:onlyrealm des:afs3
                default_principal_flags = +preauth
        }

testbak:/etc/krb5kdc#



testbak:/etc/default# cat krb5-kdc
#Automatically generated--do not edit
# Run dpkg-reconfigure krb5-kdc to change
KRB4_MODE=disable
RUN_KRB524D=false


testbak:/etc/default# cat krb5-admin-server
RUN_KADMIND=true
RUN_V5PASSWDD=false


Thanks in advance,

Rudy



More information about the Kerberos mailing list