[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
heimdal trouble
ey
I've a heimdal server running on FreeBSD 5.2 RELEASE and it works great.
I can get my tickets and so. But when i want to ssh with that ticket to
my FreeBSD server it won't work.
I have host keys and ssh keys in the krb5.keytab in /etc on FreeBSD and
i've a host key on my client so it should work but this is de log i get
from my FreeBSD server:
# tail -f -n0 kdc.log
2004-01-25T13:21:18 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:18 Server not found in database:
krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:18 sending 146 bytes to IPv4:192.168.0.9
2004-01-25T13:21:18 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:18 Server not found in database:
krbtgt/HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:18 sending 138 bytes to IPv4:192.168.0.9
2004-01-25T13:21:18 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ORG@CACHOLONG.NL
2004-01-25T13:21:18 Server not found in database:
krbtgt/ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:18 sending 126 bytes to IPv4:192.168.0.9
2004-01-25T13:21:18 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/NL@CACHOLONG.NL
2004-01-25T13:21:18 Server not found in database:
krbtgt/NL@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:18 sending 125 bytes to IPv4:192.168.0.9
2004-01-25T13:21:18 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:18 Server not found in database:
krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:18 sending 146 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 138 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 126 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/NL@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/NL@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 125 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 146 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 138 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 126 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/NL@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/NL@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 125 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/ACTIVE2.HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 146 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/HOMELINUX.ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/HOMELINUX.ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 138 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/ORG@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/ORG@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 126 bytes to IPv4:192.168.0.9
2004-01-25T13:21:19 TGS-REQ matthijs@CACHOLONG.NL from IPv4:192.168.0.9
for krbtgt/NL@CACHOLONG.NL
2004-01-25T13:21:19 Server not found in database:
krbtgt/NL@CACHOLONG.NL: No such entry in the database
2004-01-25T13:21:19 sending 125 bytes to IPv4:192.168.0.9
And here:
monster% klist
Credentials cache: FILE:/tmp/krb5cc_1002
Principal: matthijs@CACHOLONG.NL
Issued Expires Principal
Jan 25 12:25:00 Jan 25 22:23:42 krbtgt/CACHOLONG.NL@CACHOLONG.NL
monster%
When i enable debug support in ssh i get this:
debug1: userauth-request for user matthijs service ssh-connection method
gssapi
debug1: attempt 1 failures 1
debug2: input_userauth_request: try method gssapi
debug3: mm_request_send entering: type 37
debug3: monitor_read: checking request 37
debug1: Miscellaneous failure (see text)
unable to find realm of host
debug3: mm_request_send entering: type 38
debug3: mm_request_receive entering
debug3: mm_request_receive_expect entering: type 38
debug3: mm_request_receive entering
Failed gssapi for matthijs from 192.168.0.9 port 35355 ssh2
debug1: userauth-request for user matthijs service ssh-connection method
gssapi
debug1: attempt 2 failures 2
debug2: input_userauth_request: try method gssapi
Failed gssapi for matthijs from 192.168.0.9 port 35355 ssh2
So ssh cannot find my host or my realm but when i ping
router.cacholong.nl i see the ip address so why can sshd not found my
realm ?