nfs/kerberos problems

Chantal Rosmuller chantal at antenna.nl
Wed Aug 19 13:22:51 EDT 2009 


On Tuesday 18 August 2009 19:21:23 Steve Glasser wrote:
> > added principal for client ubuntuhardy2
> >
> >  addprinc -randkey host/ubuntuhardy2.localhost.network addprinc -randkey
> > nfs/ubuntuhardy2.localhost.network
> > client
> >
> > logged in on the client:
> >
> >  kinit admin/admin
> >  Password for admin/admin at LOCALHOST.NETWORK: r
> >
> > add principal for client
> >
> >  kadmin: addprinc -randkey nfs/ubuntuhardy2.localhost.network
>
> It appears you created the host/ubuntuhardy2.localhost.network
> principal but did not extract the host key to the local keytab file on
> ubuntuhardy2, as you did with /ubuntuhardy1.  I believe that is
> required; if I'm wrong someone please correct me.
>
> Cheers

Hi Steve, I tried but it doesn't help, here are my keytabs:


root at ubuntuhardy2:~#  klist -e -k /etc/krb5.keytab
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
---- 
--------------------------------------------------------------------------
   3 nfs/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (Triple DES cbc mode 
with HMAC/sha1) 
   3 nfs/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32) 
   4 host/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (Triple DES cbc 
mode with HMAC/sha1) 
   4 host/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32) 


root at ubuntuhardy1:~#  klist -e -k /etc/krb5.keytab
Keytab name: FILE:/etc/krb5.keytab
KVNO Principal
---- 
--------------------------------------------------------------------------
   3 host/ubuntuhardy1.localhost.network at LOCALHOST.NETWORK (Triple DES cbc 
mode with HMAC/sha1) 
   3 host/ubuntuhardy1.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32) 
   3 nfs/ubuntuhardy1.localhost.network at LOCALHOST.NETWORK (Triple DES cbc mode 
with HMAC/sha1) 
   3 nfs/ubuntuhardy1.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32) 
   4 nfs/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (Triple DES cbc mode 
with HMAC/sha1) 
   4 nfs/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32) 
   3 host/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (Triple DES cbc 
mode with HMAC/sha1) 
   3 host/ubuntuhardy2.localhost.network at LOCALHOST.NETWORK (DES cbc mode with 
CRC-32)

More information about the Kerberos mailing list