4.0 + PAM + Krb5 + AFS = Working
From: Derek Harkness (dharknes_at_umd.umich.edu)
Date: 03/14/05
- Previous message: Jason A. Dour: "SFTP Logging Patch Webpage"
- Next in thread: Darren Tucker: "Re: 4.0 + PAM + Krb5 + AFS = Working"
- Reply: Darren Tucker: "Re: 4.0 + PAM + Krb5 + AFS = Working"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: secureshell@securityfocus.com Date: Mon, 14 Mar 2005 07:19:44 -0500
I upgraded a test workstation to 4.0, I compiled two versions one with
kerberos+afs support and another with just PAM. The goal is to be able
to login using kerberos and get an afs token.
So here's what I've got, if I use the kerberos+afs version I can't
login at all. I don't have a keytab for this workstation which is the
error message I'm getting so I'm assuming that this will work once I
get one from my krb admin.
The bigger problem is the PAM integration. When I login using just PAM
I am able to get logged in but neither my kerberos tickets or my afs
tokens are set. Just wondering if anyone has a suggestion on getting
this working. Since I have far to many server with ssh to request
keytabs for all of them.
I'm running on a Debian stable (Woody), using the packaged pam-krb5 and
pam-openafs-session modules.
Thanks,
Derek
"This world is a comedy to those who think and a tragedy to those who
feel."
- application/pgp-signature attachment: This is a digitally signed message part
- Previous message: Jason A. Dour: "SFTP Logging Patch Webpage"
- Next in thread: Darren Tucker: "Re: 4.0 + PAM + Krb5 + AFS = Working"
- Reply: Darren Tucker: "Re: 4.0 + PAM + Krb5 + AFS = Working"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
