[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Server not found in database

To: Alex Schenkman <alex@melody.se>, heimdal-discuss@sics.se
Subject: Re: Server not found in database
From: "Brandon S. Allbery KF8NH" <allbery@ece.cmu.edu>
Date: Tue, 13 Mar 2001 12:58:48 -0500
In-Reply-To: <0103131711110Z.03532@marley>
Sender: owner-heimdal-discuss@sics.se

On Tuesday, March 13, 2001 05:04:02 PM +0100, Alex Schenkman 
<alex@melody.se> wrote:
+-----
| $ sudo /usr/local/bin/login me
| 2001-03-13T17:05:37 AS-REQ me@FREE.TEST from IPv4:10.1.1.6 for
| krbtgt/FREE.TEST@FREE.TEST 2001-03-13T17:05:37 TGS-REQ me@FREE.TEST from
| IPv4:10.1.1.6 for host/carlota.intern@FREE.TEST 2001-03-13T17:05:37
| Server not found in database: host/carlota.intern@FREE.TEST: No such
| entry in the database
|
| (carola.intern is the kdc and localhost)
| Do I need an entry in the database for my host as well ?
+--->8

Yes; login first gets a TGT, then uses that to try to get the host service 
ticket as a check for KDC spoofing.  You need both the host/carlota.intern 
ticket and a keytab (/etc/krb5.keytab) containing it.

-- 
brandon s. allbery     [os/2][linux][solaris][japh]   allbery@kf8nh.apk.net
system administrator        [WAY too many hats]         allbery@ece.cmu.edu
electrical and computer engineering                                   KF8NH
carnegie mellon university     ["better check the oblivious first" -ke6sls]

References:
- Server not found in database
  - From: Alex Schenkman <alex@melody.se>

Prev by Date: Re: Server not found in database
Next by Date: strange behaviour with login
Prev by thread: Re: Server not found in database
Next by thread: strange behaviour with login
Index(es):
- Date
- Thread