allowing SSO for other hosts
Douglas E. Engert
deengert at anl.gov
Mon Jan 9 10:28:20 EST 2006
Rodrick Brown wrote:
> I finally got the stock solaris 10 kerberos working but now i'm having
> problems with sso and hosts that are not a kdc, I have no problems
> getting a ticket on my clients and logging into my kdc but now i'm
> trying to allow others hosts to have sso ability to other clients that
> are I tried to do the following
>
> addprinc -randkey host/foo1.bar.com
> addprinc user/foo1.bar.com
addprinc user
(Users don't have hostnames.)
> ktadd host/foo.bar.com
Run on the foo.bar.vcom machine?
> ktadd user/foo1.bar.com
Not heeded, users are not in keytabs.
>
> restarting both krb5kdc kadmin
Not needed to restart.
>
> But i'm still not able to log into clienta from clientb w/o being
> prompt for a password.
Did you configure the Slaris 10 PANM for pam_krb5?
>
--
Douglas E. Engert <DEEngert at anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
More information about the Kerberos
mailing list