[27468] in Kerberos
Re: kadmin problem
daemon@ATHENA.MIT.EDU (Marcus Watts)
Sat Feb 17 04:29:41 2007
Message-Id: <200702170929.EAA18697@quince.ifs.umich.edu>
To: scotty adams <scotty.adams@yahoo.com>
In-reply-to: Your message of "Sat, 17 Feb 2007 01:13:26 PST."
<644459.93106.qm@web55303.mail.re4.yahoo.com>
Date: Sat, 17 Feb 2007 04:29:20 -0500
From: Marcus Watts <mdw@umich.edu>
Cc: kerberos@mit.edu
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
scotty adams <scotty.adams@yahoo.com> writes:
> hi,
>
> after i modified the principal using modprinc -requires_preauth
>
> kinit scotty
> kinit: Password incorrect
>
> Why!!!
I don't know. Could be lots and lots of things. For instance:
/1/ password *is* incorrect.
/2/ operator error -- caps lock, leading or
trailing space, non-ascii character, etc.
/3/ replication problem.
/4/ software or hardware glitch on kdc
/5/ software or hardware glitch on client
/6/ invalid kdc configuration or other operator error on kdc.
/7/ dns returns wrong server.
first thing I'd try is cpw. If cpw can be used to set a password
that then works, that eliminates many of these cases.
Check also replication (if you have a slave site), logs, configuration, etc.
If cpw doesn't work, then you're likely going to have to resort to gdb,
strace,tcpdump, or ddb,truss,snoop, like various people have
stated in previous messages.
-Marcus
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos