X.509 preauth
Pascal Jakobi
pascal.jakobi at gmail.com
Sun Nov 1 13:10:11 EST 2015
It works now !
Reinstalled the whole stuff and it works now as expected.
Sorry for the disturbance...
On 31.10.2015 04:45 carra, Greg Hudson wrote:
> On 10/31/2015 10:06 AM, Pascal Jakobi wrote:
>> Problem is that nothing is logged on the KDC side...
> There should be a message at startup, like:
>
> Oct 29 13:04:46 equal-rites krb5kdc[19021](Error): preauth pkinit
> failed to initialize: No realms configured correctly for pkinit
> support
>
> although it isn't as specific as it should be.
>
>> pkinit_identity = FILE:/etc/pki/krb5/certs/kdc_cert.pem, /etc/pki/krb5/private/kdc_key.pem
> I don't think the space after the comma there is permitted. (More
> precisely, it's treated as part of the pathname for the key file.)
--
Pascal Jakobi <mailto:pascal.jakobi at gmail.com>
116 rue de Stalingrad, 93100 Montreuil
France
Tel : +33 6 87 47 58 19
More information about the krbdev
mailing list