[krbdev.mit.edu #2913] client kadm5_init incompatible with pre-1.4
Tom Yu via RT
rt-comment at krbdev.mit.edu
Mon Mar 21 15:54:17 EST 2005
>>>>> "jd" == Public Submitter via RT <rt-comment at krbdev.mit.edu> writes:
jd> [guest - Wed Mar 16 14:15:31 2005]:
>>
>> As I was saying (sorry about the previous "submit")...
>>
>> It seems like this fix breaks kadmin auth. with keytab. For example:
>>
>> # kadmin -p host/binky.foonon.com -k -t /etc/krb5.keytab
>> Authenticating as principal host/binky.foonon.com with
>> keytab /etc/krb5.keytab.
>> kadmin: Cannot find KDC for requested realm while initializing kadmin
>> interface
>>
>> jd
jd> Also, this seems to not happen when the kadmin server is running on a
jd> pre-1.4 KDC
This seems like it may be a bug exposed due to a misconfigured
domain_realm mapping. Are the pre-1.4 KDC and the 1.4 KDC running on
the same host? Does the kadmin client without a keytab work correctly
on the same host from which you attempt to use kadmin with the keytab?
---Tom
More information about the krb5-bugs
mailing list