Kerberos on AIX 5.3 : error :Cannot retrieve key from keytab file
kiranmehta1981@yahoo.com
kiranmehta1981 at yahoo.com
Sat Jul 23 04:19:10 EDT 2005
Hi ,
Following is the output of some of the commands are ran after
adding principals on kerberos database.
kadmin.local: getprinc nfs/vcsaix6.vxindia.veritas.co=ADm
Principal: nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
Expiration date: [never]
Last password change: Tue Jul 19 17:21:56 CDT 2005
Password expiration date: [none]
Maximum ticket life: 1 day 00:00:00
Maximum renewable life: 7 days 00:00:00
Last modified: Tue Jul 19 17:21:56 CDT 2005
(root/ad... at vxindia.veritas.com)
Last successful authentication: [never]
Last failed authentication: [never]
Failed password attempts: 0
Number of keys: 4
Key: vno 4, Triple DES cbc mode with HMAC/sha1,
no salt
Key: vno 4, ArcFour with HMAC/md5,
no salt
Key: vno 4, AES-256 CTS mode with 96-bit SHA-1 HMAC,
no salt
Key: vno 4, DES cbc mode with RSA-MD5,
no salt
Attributes:
Policy: [none]
kadmin.local:
------------------------------=AD--
bash-2.05b# klist -k /etc/krb5/krb5.keytab
Key table: /etc/krb5/krb5.keytab
Number of entries: 4
[1] principal: nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
KVNO: 4
[2] principal: nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
KVNO: 4
[3] principal: nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
KVNO: 4
[4] principal: nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
KVNO: 4
bash-2.05b#
klist -k /etc/krb5/krb5.keytab
bash-2.05b# kinit -k -t /etc/krb5/krb5.keytab
nfs/vcsaix6.vxindia.veritas.co=ADm
com.ibm.security.krb5.KrbExcep=ADtion, status code: 0
message: Cannot retrieve key from keytab for principal
nfs/vcsaix6.vxindia.veritas.... at vxindia.veritas.com
When klist is able to read /etc/krb5/krb5.keytab file why is kinit
not able to retrive the key.=20
thanks,=20
kiran
More information about the Kerberos
mailing list