kprop between master (mandriva) and slave (solaris)

Marcin N nichu at CUT.onet.pl
Tue Apr 29 11:47:44 EDT 2008 

Marcin N wrote:
> Hello
> I'm trying to make krb database replication again (this time mandriva is 
> master and solaris is slave)
> 
> I patched kprop on master (mandriva) - by the way thank You for patch 
> one more time but while trying to execute kprop i get error message:
> 
> /usr/local/sbin/kprop -n kiprop at KRB.COM -f /home/nichu/dump.krb5 
> slave.krb.com
> 
> /usr/local/sbin/kprop: Cannot resolve network address for KDC in 
> requested realm while getting initial ticket
> 
> DNS is not an issue - because:
> host slave.krb.com
> slave.krb.com has address 192.168.0.50
> 
> in log there's nothing about that :/
> 
> file kdc.conf:
> 
> [kdcdefaults]
>         kdc_ports = 88,750
> 
> [realms]
>      KRB.COM = {
>                 profile = /etc/krb5.conf
>                 database_name = /usr/local/var/krb5kdc/principal
>                 admin_database_name = 
> /usr/local/var/krb5kdc/principal.kadm5
>                 admin_database_lockfile = 
> /usr/local/var/krb5kdc/principal.kadm.lock
>                 admin_keytab = FILE:/etc/kerberos/krb5kdc/kadm5.keytab
>                 acl_file = /etc/kerberos/krb5kdc/kadm5.acl
>                 key_stash_file = /etc/kerberos/krb5kdc/.k5stash
>                 kadmind_port = 749
>                 max_life = 8h 0m 0s
>                 max_renewable_life = 7d 0h 0m 0s
>                 default_principal_flags = +preauth
>         }
> 
> =============================
> 
> file /etc/krb.conf
> [libdefaults]
>         default_realm = KRB.COM
> 
> [realms]
>          KRB.COM = {
>                 admin_server = master.krb.com
>                 kdc = master.krb.com
>                 kdc = slave.krb.com
>                 master_kdc = master.krb.com
> 
>         }
> 
> [domain_realm]
>         .krb.com = KRB.COM
>         krb.com = KRB.COM
> 
> [logging]
>  default = FILE:/var/log/kerberos/krb5libs.log
>  kdc = FILE:/var/log/kerberos/krb5kdc.log
>  admin_server = FILE:/var/log/kerberos/kadmind.log
> 
> [kdc]
>  profile = /etc/kerberos/krb5kdc/kdc.conf
> ==============================
> 
> Principals of course exists:
> 
> kadmin.local:  listprincs
> K/M at KRB.COM
> host/slave.krb.com at KRB.COM
> host/master.krb.com at KRB.COM
> kadmin/admin at KRB.COM
> kadmin/changepw at KRB.COM
> kadmin/history at KRB.COM
> kadmin/master.krb.com at KRB.COM
> krbtgt/KRB.COM at KRB.COM
> nichu/admin at KRB.COM
> nichu at KRB.COM
> 
> 
> So what's wrong ? ? ?
> 
> Regards
> nichu

Hello again:
I added into /etc/hosts master.krb.com after 127.0.0.1 entry and now
error message is different (so it was a prlbem with name resolution...):

/usr/local/sbin/kprop: while setting client principal name

:/ but still it doesn't tell me to much :/

regards
nichu

More information about the Kerberos mailing list