[30209] in Kerberos
Re: Cross Realm Not working for SSH
daemon@ATHENA.MIT.EDU (Douglas E. Engert)
Thu Aug 7 13:21:23 2008
Message-ID: <489B2EC5.8030806@anl.gov>
Date: Thu, 07 Aug 2008 12:20:05 -0500
From: "Douglas E. Engert" <deengert@anl.gov>
MIME-Version: 1.0
To: Abhishek Chowdhury <abhishek.brave@gmail.com>
In-Reply-To: <18869731.post@talk.nabble.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
UserB needs a ~.k5login file with
UserA@RealmA
Abhishek Chowdhury wrote:
> hi
> i am using kerberos V5 and MAC OS X 10.5.2
>
> i have configured 2 realms and established cross realm trust between them.
>
> i have to use SSH service.
>
> When i am doing SSH in simple authentication, it is working fine ie not
> asking any password.
> but password is being asked for Cross realm.
>
> suppose UserA is in REALMA and SSH server serverB in REALMB
>
> ServerB has an account for UserB(UserB is its admin)
>
> when i do kinit UserA@REALMA, i get the initial ticket
> krbtgt/REALMA@REALMA.
> now when i am doing ssh UserB@serverB.com it is asking for password.
>
> According to my understanding USERA should be allowed to access USERB's
> account on SERVERB for passwrodless ssh.
> How to set USERA's access in serverB?
> or is there any other method?
>
> any pointers will be appreciated.
>
>
>
--
Douglas E. Engert <DEEngert@anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
