Cross Realm Not working for SSH

Douglas E. Engert deengert at anl.gov
Thu Aug 7 13:20:05 EDT 2008


UserB needs a ~.k5login file with
UserA at RealmA

Abhishek Chowdhury wrote:
> hi
> i am using kerberos V5 and MAC OS X 10.5.2
> 
> i have configured 2 realms and established cross realm trust between them.
> 
> i have to use SSH service.
> 
> When i am doing SSH in simple authentication, it is working fine ie not
> asking any password.
> but password is being asked for Cross realm.
> 
> suppose UserA is in REALMA and SSH server serverB in REALMB
> 
> ServerB has an account for UserB(UserB is its admin)
> 
> when i do kinit  UserA at REALMA, i get the initial ticket
> krbtgt/REALMA at REALMA.
> now when i am doing ssh UserB at serverB.com it is asking for password.
> 
> According to my understanding USERA should be allowed to  access USERB's
> account on SERVERB for passwrodless ssh.
> How to set USERA's access in serverB?
> or is there any other method?
> 
> any pointers will be appreciated.
> 
> 
> 

-- 

  Douglas E. Engert  <DEEngert at anl.gov>
  Argonne National Laboratory
  9700 South Cass Avenue
  Argonne, Illinois  60439
  (630) 252-5444



More information about the Kerberos mailing list