[30711] in Kerberos
Kerberised NFS
daemon@ATHENA.MIT.EDU (Edward Irvine)
Wed Feb 11 16:16:30 2009
Mime-Version: 1.0 (Apple Message framework v753.1)
Message-Id: <957426E6-F28F-46A3-B233-6E70A4B1B960@tpg.com.au>
To: kerberos@mit.edu
From: Edward Irvine <eirvine@tpg.com.au>
Date: Thu, 12 Feb 2009 08:15:13 +1100
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi Folks,
Is there a ticket beween client and server that expires? If so, how
does it get renewed?
Kerberised NFS presumably requires authentication and (optionally)
encryption between client and server, so presumably the client needs
to get a ticket prior to contacting the server.
I appear to be successfully using sharing out /export/home from a
server with kerberos security options, and successfully automounting
user's home directories on client machines when they log in. However,
first thing in the morning the home directories on client machines
are inaccessable (i.e. when I ssh in my home directory is
unavaliable). Restarting automountd fixes things for the rest of the
day.
This is Solaris 10 u6 on client and server, and using the Solaris 10
u6 Kerberos server. There is no NIS or LDAP naming going on (yet) -
nsswitch is to files and DNS. The mapid domain name is set in /etc/
defaults/nfs.
Any pointers greatly appreciated.
Eddie
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
