[38388] in Kerberos
Query, Need help gssapi-client tool - Can't find client principal
daemon@ATHENA.MIT.EDU (Santosh Kumar)
Tue Dec 4 06:26:46 2018
MIME-Version: 1.0
In-Reply-To: <CAFnsFFdG-ywedBDeqCMg2sXGt0C-+ubEaByuCUtF3YTHjoFVTQ@mail.gmail.com>
From: Santosh Kumar <santoshjeergi@gmail.com>
Date: Tue, 4 Dec 2018 16:51:44 +0530
Message-ID: <CAFnsFFfRf37tkjPUkeNa=42SxLBO6on8kaYjueiGgsst-894XQ@mail.gmail.com>
To: <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Dear all,
I'm struggling to use gss_acquire_cred, it's not able to find the
principal , from the kerberos FILE:/tmp/krb cache.
I'm looking at gss-client tool, for validating:
gss-client -port 443 -user leema@PULSEBLR.COM -ccount 1 -mcount 1
CASMPS127.PULSEBLR.COM@PULSEBLR.COM http test
Facing:
GSS-API error acquiring creds: Unspecified GSS failure. Minor code may
provide more information
GSS-API error acquiring creds: Can't find client principal
leema@PULSEBLR.COM in cache collection
Below is the cache:
[admin@pxe-dev kinit]$ ../klist/klist
Ticket cache: FILE:/tmp/krb5cc_1000
Default principal: host/PXE-DEV.PULSEBLR.COM@PULSEBLR.COM
Valid starting Expires Service principal
12/04/2018 10:48:04 12/04/2018 20:48:04 krbtgt/PULSEBLR.COM@PULSEBLR.COM
renew until 12/11/2018 10:48:04
12/04/2018 10:48:07 12/04/2018 20:48:04 host/
PXE-DEV.PULSEBLR.COM@PULSEBLR.COM
for client leema\@PULSEBLR.COM@PULSEBLR.COM, renew until 12/11/2018
10:48:04
12/04/2018 10:48:07 12/04/2018 20:48:04 http/
CASMPS127.PULSEBLR.COM@PULSEBLR.COM
for client leema\@PULSEBLR.COM@PULSEBLR.COM, renew until 12/11/2018
10:48:04
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
