kprop: Software caused connection abort while authenticating to server
Mark.Hendricks@humboldt.edu
Mark.Hendricks at humboldt.edu
Fri Sep 10 19:41:16 EDT 2010
Hello,
We have been running krb5 kdc for more than 5 years.
Propagation between the master kdc and the slave recently stopped working.
I am getting the following error.
/usr/kerberos/sbin/kprop: Software caused connection abort while authenticating to server
I see successful authentication (on the master) and firewall accepts (on the slave)
Sep 10 16:28:18 [FQDN of SLAVE] krb5kdc[10815](info): AS_REQ (6 etypes {1 11 10 15 12 13}) 137.150.145.188: ISSUE: authtime 1284161298, etypes {rep=1 tkt=1 ses=1}, host/[FQDN of SLAVE]@REALM for host/[FQDN of SLAVE]@REALM
Sep 10 14:36:30 [FQDN of MASTER-KDC] krb5kdc[10815](info): AS_REQ (6 etypes {1 11 10 15 12 13}) 137.150.145.188: ISSUE: authtime 1284154590, etypes {rep=1 tkt=1 ses=1}, host/[FQDN of MASTER-KDC]@REALM for host/[FQDN of MASTER-KDC]@REALM
I used kdb5_util to manually dump then load on the slave. -- this failed.
I ended up taring the /var/kerberos/krb5kdc directory (including database) and stash file on the master then un-taring on the slave. This worked to get the system back on line, but I still receive the same error.
krb5-server-1.6.1-36.el5_5.5
Red Hat Enterprise Linux Server release 5.5 (Tikanga)
Any assistance would be appreciated.
Mark
--
Mark Hendricks
Information Security Analyst, CISSP
Information Technology Services
Humboldt State University
More information about the Kerberos
mailing list