LDAP backend - help needed...
Mark Pröhl
mark at mproehl.net
Wed May 9 02:46:59 EDT 2012
Am 08.05.2012 15:03, schrieb Berthold Cogel:
> Am 07.05.2012 18:16, schrieb Greg Hudson:
>> On 05/07/2012 11:38 AM, Berthold Cogel wrote:
>>> -rw------- 1 root root 128 May 7 16:09 service.keyfile
>>
>>> [root at hydra krb5kdc]# kadmin.local
>>> kadmin.local: unable to get default realm
>>
>> I'm not sure why kadmin.local wouldn't be reading your krb5.conf file
>> (partly because krb5 1.6 was a long time ago). Does strace show it
>> trying to open anything other than kdc.conf?
>>
>
> At least I've got this one sorted out... arrgh...
>
>
> kdb5_ldap_util is reading both kdc.conf and krb5.conf. But it searches
> krb5.conf for the backend definitions. In a book I found the hint to set
> KRB5_CONFIG to kdc.conf. And I missed the 'unset' statement. Sorry...
> Now kadmin.local behaves perfectly for this case.
this workarround is also described here:
http://datwww.mit.edu/menelaus.mit.edu/kerberos/32700
and the problem should be fixed in 1.9 according to
http://datwww.mit.edu/menelaus.mit.edu/kerberos/32719
More information about the Kerberos
mailing list