[4644] in Kerberos
Re: Help needed to start Kerberos V5 B4
daemon@ATHENA.MIT.EDU (jack howard)
Sat Feb 18 08:04:54 1995
To: kerberos@MIT.EDU
Date: 18 Feb 1995 05:33:38 GMT
From: jhoward@sti.nasa.gov (jack howard)
In article <3hse8b$dc8@frclnews.frcl.bull.fr>, J.Lebastard@frcl.bull.fr(Jacques Lebastard) says:
>Try a 'kdb5_stash' b/w "create" and "edit" to export the Kerberos master key :
>the KDC can then get that key itself and I think you'll succeed to make it
>run in background...
>
>Jacques
>
>PS : Yes, the krb5kdc **is** a daemon :-)
That worked. I still have to put a '&' on the end to get it to go to background.
Found a description of this in the ./doc/old-V4-docs/operation.PS file. But
thats the least of my problems now.
I charged ahead and tried to get telnetd/telnet to work but ran into problems. I
decided to back off and try the sample client/server programs provided in the
distribution (./src/appl/sample/) for which there is some decent documentation
(again in the old-V4-docs). After adding "sample 1111/tcp" to /etc/services,
I did a "ark sample/my.host.name" and a "xst my.host.name sample" in krb5_edit.
I copied the resulting srvtab to /etc/v5srvtab then ran "sserver 1111" and
"sclient" in seperate xterms on my SUN (solaris) and it worked !
Back to telnet/telnetd. My biggest problem in debugging this seems to be that I
am not getting any syslog'ing from the krb5kdc server. There is an "openlog"
in main.c for LOG_LOCAL6 and lots of "syslog(LOG_INFO..." calls in the code.
I've added local6.info and local6.err entries in my syslog.conf but still no
logging.
What I'm doing is telnet'ing from the same machine the krb5kdc is running on back
to this same machine (from an xterm window). When I run telnet with the "authdebug"
option set on I get the following error msg:
Kerberos V5: failure on credentials(Server not found in Kerberos database)
Does anyone know what the proper entry in the Kerberos database should be for
telnet ? I've tried telnetd, telnet5 (the entry in my /etc/services), rcmd, and
rcmd.hostname but still the same message. More importantly, what do I need to do
to get some syslog'ing going. I assume that this missing server name would appear
in some error msg in the log.
Any and all help appreciated
Jack
