MIT Kerberos: Cannot resolve network address for KDC in realm

miguel.sanders@arcelormittal.com miguel.sanders at arcelormittal.com
Thu Apr 30 10:15:00 EDT 2009


alezeo.com should be upper case.
Realm names are always upper case! 


Met vriendelijke groet
Best regards
Bien à vous

Miguel SANDERS
ArcelorMittal Gent

UNIX Systems & Storage
IT Supply Western Europe | John Kennedylaan 51
B-9042 Gent

T +32 9 347 3538 | F +32 9 347 4901 | M +32478 805 023
E miguel.sanders at arcelormittal.com
www.arcelormittal.com/gent

-----Oorspronkelijk bericht-----
Van: kerberos-bounces at mit.edu [mailto:kerberos-bounces at mit.edu] Namens Rob
Verzonden: donderdag 30 april 2009 15:03
Aan: kerberos at mit.edu
Onderwerp: MIT Kerberos: Cannot resolve network address for KDC in realm

Hi:

I've been having a hard time getting MIT Kerberos up and running on solaris 10.

The latest of my problems is this error when i run kinit from the KDC.

dsldap01$ /krb5/bin/kinit rob/admin at alezeo.com
kinit(v5): Cannot resolve network address for KDC in realm alezeo.com while getting initial credentials

This sounds like a DNS problem, but I don't think it is.

dsldap01$ host -t A dsldap01.alezeo.com
dsldap01.alezeo.com has address 10.93.120.72

Also in my hosts file:
127.0.0.1       localhost
10.93.120.72    dsldap01.alezeo.com        dsldap01        loghost

Here is my krb5.conf
=============
[libdefaults]
        dns_lookup_realm = false
        default_realm = ALEZEO.COM
        ticket_lifetime = 600
        kdc_req_checksum_type = 2
        checksum_type = 2
        ccache_type = 1
        default_tkt_enctypes = des-cbc-crc
        default_tgs_enctypes = des-cbc-crc

[kdc]
        profile = /krb5/var/krb5kdc/kdc.conf


[logging]
        default = FILE:/var/krb5/kdc.log
        kdc = FILE:/var/krb5/kdc.log
        admin_server = FILE:/var/krb5/adm.log

[realms]
        ALEZEO.COM = {
                kdc = dsldap01.alezeo.com:88
                admin_server = dsldap01.alezeo.com:749
                default_domain = alezeo.com
        }

[domain_realm]
        .alezeo.com = ALEZEO.COM
        alezeo.com = ALEZEO.COM

[login]
    krb4_convert = 0


Here is my kdc.conf
============
[kdcdefaults]
        kdc_ports = 88

[realms]
        alezeo.com = {
                profile = /etc/krb5.conf
                database_name = /krb5/var/krb5kdc/principal
                admin_database_name = /krb5/var/krb5kdc/kadm5_adb
                admin_database_lockfile = /krb5/var/krb5kdc/ kadm5_adb.lock
                admin_keytab = FILE:/krb5/var/krb5kdc/kadm5.keytab
                acl_file = /krb5/var/krb5kdc/kadm5.acl
                kdc_ports = 88
                kadmind_port = 749
                max_life = 10h 0m 0s
                max_renewable_life = 7d 0h 0m 0s
                master_key_type = des-cbc-crc
                supported_enctypes = des-cbc-crc:normal des:v4
        }


Any suggestions are appreciated!

TIA!
________________________________________________
Kerberos mailing list           Kerberos at mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

**** 
This message and any attachment are confidential, intended solely for the use of the individual or entity to whom it is addressed and may be protected by professional secrecy or intellectual property rights. 
If you have received it by mistake, or are not the named recipient(s), please immediately notify the sender and delete the message. You are hereby notified that any unauthorized use, copying or dissemination of any or all information contained in this message is prohibited. 
Arcelormittal shall not be liable for the message if altered, falsified, or in case of error in the recipient. 
This message does not constitute any right or commitment for ArcelorMittal except when expressly agreed otherwise in writing in a separate agreement.  
****  





More information about the Kerberos mailing list