Changing password on linux machine hangs

M qassair at gmail.com
Wed Apr 4 10:08:44 EDT 2007


Yes I do. My default REALM is also correct. I can ping my admin-server
just fine. I've recreated the keytab file to make sure that wasn't the
problem.
Here's the krb5.conf:

[libdefaults]
 default_realm = TEST.COM
 dns_lookup_realm = true
 dns_lookup_kdc = false
 forwardable = true
 proxiable = true
 default_keytab_name = FILE:/etc/krb5.keytab

[realms]
 TEST.COM = {
  default_domain = TEST.COM
  kdc = server1.test.com
  kdc = server2.test.com
  admin_server = server1.test.com
 }

[domain_realm]
 .test.com = TEST.COM
 test.com = TEST.COM
[appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   krb4_convert = false
   forward = true
   encrypt = true
 }

I can get a ticket just fine if I try kinit at TEST.COM or klist to see
the tickets after logging in.

Thanks

Q

On 4/3/07, Christopher D. Clausen <cclausen at acm.org> wrote:
> M <qassair at gmail.com> wrote:
> > Yep. Tried that. Same behavior. Its not just one linux machine, its
> > all linux machines that do this. So its something thats set
> > environment wide...I've ruled out the firewall...not sure what else it
> > could be.
>
> What does your krb5.conf file look like?
>
> Do you have an "admin_server" specified for your realm?
>
> <<CDC
>
>
>



More information about the Kerberos mailing list