[24322] in Kerberos
OS X 10.4.2 kdestroy problem
daemon@ATHENA.MIT.EDU (Wachdorf, Daniel R)
Wed Jul 20 13:23:21 2005
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Tue, 19 Jul 2005 11:24:32 -0600
Message-ID: <80A84CB5E834D4439556D1F64A1FEB83010669A1@ES20SNLNT.srn.sandia.gov>
From: "Wachdorf, Daniel R" <drwachd@sandia.gov>
To: kerberos@mit.edu
Content-Type: text/plain;
charset=us-ascii
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit
Has anyone run into this?
We have edited /etc/authorization and set
builtin:krb5authenticate,privileged in place of authinternal for
system.login.console. This allows us to log into the system with a
valid Kerberos password.
However, in 10.4.2 when we run kdestroy, kinit will no longer work:
drwmac:~ drwachd$ /usr/bin/klist
Kerberos 5 ticket cache: 'API:Initial default ccache'
Default principal: drwachd@dce.sandia.gov
Valid Starting Expires Service Principal
07/19/05 11:20:43 07/19/05 21:20:42
krbtgt/dce.sandia.gov@dce.sandia.gov
renew until 08/02/05 11:20:42
klist: No Kerberos 4 tickets in credentials cache
drwmac:~ drwachd$ /usr/bin/kdestroy
drwmac:~ drwachd$ /usr/bin/kinit
Please enter the password for drwachd@dce.sandia.gov:
Kerberos Login Failed: Credentials cache server unavailable
drwmac:~ drwachd$
If we login with a local (not Kerberos) password, type kinit then
kdestroy, then kinit - it works fine.
Any ideas as to the problem?
-dan
--------------------------------------
Daniel Wachdorf
drwachd@sandia.gov
Sandia National Laboratories
Cyber Security Technologies
505-284-8060
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
