[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
AFS Keyfile Problem
Hi,
I'm trying to setup a Heimdal real and an OpenAFS cell
on a Debian Woody computer.
I have succeded with the Heimdal setup but ran into problems
when I try to extract and install the AFS key into
/etc/openafs/server/KeyFile
How do yo do this correctly ?
I have tried a couple of different ways but I must have done it wrong,
bosserver
segfaults when I try to start it.
Most suggestions I have found assume MIT Kerberos.
I have created the afs key
kadmin> list -l afs
pe/root@ENERGY.KTH.SE's Password:
Principal: afs@ENERGY.KTH.SE
Principal expires: never
Password expires: never
Last password change: never
Max ticket life: 1 day
Max renewable life: 1 week
Kvno: 5
Mkvno: 0
Policy: none
Last successful login: never
Last failed login: never
Failed login count: 0
Last modified: 2004-05-22 16:23:13 UTC
Modifier: pe/root@ENERGY.KTH.SE
Attributes:
Keytypes(salttype[(salt-value)]): des-cbc-crc(pw-salt),
des-cbc-md4(pw-salt), des-cbc-md5(pw-salt), des3-cbc-sha1(pw-salt)
my /etc/krb5.conf
[libdefaults]
default_realm = ENERGY.KTH.SE
# The following krb5.conf variables are only for MIT Kerberos.
default_tgs_enctypes = des3-hmac-sha1 des-cbc-crc des-cbc-md5
default_tkt_enctypes = des3-hmac-sha1 des-cbc-crc des-cbc-md5
permitted_enctypes = des3-hmac-sha1 des-cbc-crc des-cbc-md5
krb4_config = /etc/krb.conf
krb4_realms = /etc/krb.realms
kdc_timesync = 0
ccache_type = 4
forwardable = true
proxiable = true
# The following libdefaults parameters are only for Heimdal Kerberos.
# v4_instance_resolve = false
# v4_name_convert = {
# host = {
# rcmd = host
# ftp = ftp
# }
# plain = {
# something = something-else
# }
# }
[realms]
ENERGY.KTH.SE = {
kdc = kerberos.energy.kth.se:88
admin_server = kerberos.energy.kth.se
v4_instance_resolve = true
default_domain = energy.kth.se
}
[domain_realm]
.energy.kth.se = ENERGY.KTH.SE
[login]
krb4_convert = true
krb4_get_tickets = true
[kadmin]
default_keys = v5 v4
MvH
Pär