Help: Can OpenSSH get OpenAFS token after the client login?

Lee Eric openlinuxsource at gmail.com
Sat Jun 11 08:31:00 EDT 2011


Hi,

The systems are using Fedora 14 and the systems can log in each other
by using Kerberos. But it seems after OpenSSH login the client side
cannot get the OpenAFS token. So is there any way to let the client
side get the OpenAFS token after login? Just a guessing, could I use
pam_afs_session in /etc/pam.d/sshd to do this?


[root at client1 ~]# kinit huli
Password for huli at HERDINGCAT.INTERNAL:
[root at client1 ~]# ssh huli at submit.herdingcat.internal
Last login: Sat Jun 11 08:30:24 2011 from client1.herdingcat.internal
Could not chdir to home directory /afs/herdingcat.internal/home/huli:
Permission denied
-bash: /afs/herdingcat.internal/home/huli/.bash_profile: Permission denied
-bash-4.1$

Thanks very much.

Eric



More information about the Kerberos mailing list