krb5kdc: Cannot find master key record in database - while fetching master keys list for realm
Tom Parker
tparker at cbnco.com
Wed May 9 15:18:31 EDT 2012
Hi
I have a Kerberos server that has been running for months with out any
problems.
Today when I went to log into my kdc machine I had the following error
in my logs:
May 09 10:47:52 svgauth1 krb5kdc[2451](Error): TGS_REQ: UNKNOWN SERVER:
server='krbtgt/VC.LS.CBN at LS.CBN'
May 09 10:47:52 svgauth1 krb5kdc[2451](info): TGS_REQ (4 etypes {18 17
16 23}) 172.20.133.141: PROCESS_TGS: authtime 0, <unknown client> for
<unknown server>, Server not found in Kerberos database
I am using the ldap backend and I checked in LDAP and everything looked
ok so I attempted to restart my kdc.
My kdc failed to restart with: krb5kdc: Cannot find master key record in
database - while fetching master keys list for realm VC.LS.CBN
I have the K/M at VC.LS.CBN principal in the ldap directory and it looks ok.
Any ideas as to where my problem may be? Can this entry be corrupted
some how and not load?
I am running the following versions:
krb5-1.8.3-45.1
krb5-plugin-kdb-ldap-1.8.3-45.1
krb5-client-1.8.3-45.1
krb5-32bit-1.8.3-45.1
pam-krb5-4.4-1
krb5-server-1.8.3-45.1
Thanks for any insight.
Tom Parker
More information about the Kerberos
mailing list