kadmin not working after server migration, but kdc works
Russ Allbery
eagle at eyrie.org
Tue Sep 20 15:56:51 EDT 2022
Wouter Verhelst <w at uter.be> writes:
> On Tue, Sep 20, 2022 at 11:43:40AM -0400, Greg Hudson wrote:
>> From experience, this probably means you have a single-DES enctype
>> listed in supported_enctypes and are using release 1.18. (In 1.17 or
>> previous the enctype would be recognized; in 1.19 or later the library
>> would ignore the enctype rather than failing out.) Remove the
>> single-DES enctype and kadmind should start working again.
> So, supported_enctypes is not even in the krb5.conf file; I assume that
> means it then reverts to defaults?
That's your krb5.conf, but the error message is about your kdc.conf
(/etc/krb5kdc/kdc.conf). It has its own separate supported_enctypes
setting.
--
Russ Allbery (eagle at eyrie.org) <https://www.eyrie.org/~eagle/>
More information about the Kerberos
mailing list