[6418] in Kerberos
Re: Kerberos V5 Beta 5 and Slave Servers
daemon@ATHENA.MIT.EDU (Mark W. Eichin)
Mon Jan 1 23:58:31 1996
Date: Mon, 1 Jan 1996 23:46:10 -0500
From: "Mark W. Eichin" <eichin@cygnus.com>
To: grumple@grumpy.magg.net (Greg Rumple)
Cc: kerberos@MIT.EDU
In-Reply-To: "[6417] in Kerberos"
> Jan 1 14:27:52 doc kpropd[15480]: Rejected connection from unauthorized
> principal host/grumpy.magg.net@MAGG-NET
All you have to do is authorize that host:
echo host/grumpy.magg.net@MAGG-NET > $(prefix)/lib/krb5kdc/kpropd.acl
(This is in the Cygnus V5 draft documentation; we use a somewhat
different form of documentation than MIT does though.) I hate to say
this, but it is a BETA -- you're expected to be able to read the code
and figure out what the messages mean :-) (or get professional help to
do it for you :-) :-)
> to do to get this to work, it rejects it on the slave end, and causes the
> master end to spit out an odd message as well.
That's probably just from the connection closing prematurely. Kprop
isn't a terribly clever protocol. Fix the acl, and this failure should
go away.
_Mark_ <eichin@cygnus.com>
Cygnus Support
Cygnus Network Security <network-security@cygnus.com>
http://www.cygnus.com/data/cns/
