[33034] in Kerberos
Re: Kerberos5 + SSH Questions
daemon@ATHENA.MIT.EDU (Brian Candler)
Tue Jan 4 06:16:55 2011
Date: Tue, 4 Jan 2011 11:16:47 +0000
From: Brian Candler <B.Candler@pobox.com>
To: Lee Eric <openlinuxsource@gmail.com>
Message-ID: <20110104111646.GA3858@talktalkplc.com>
MIME-Version: 1.0
Content-Disposition: inline
In-Reply-To: <AANLkTik0=02v7ZpNTZx+Ejs7dgOo8ruTJoV5aE+LCU0T@mail.gmail.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Tue, Jan 04, 2011 at 06:57:20PM +0800, Lee Eric wrote:
> debug1: Unspecified GSS failure. Minor code may provide more information
> Key table entry not found
Aha, that's your problem. What does the following show?
# ktutil
rkt /etc/krb5.keytab
l -e
^D
And what does 'klist' on the client show, after you've attempted to ssh?
> So I notice that it was due to SSH server side cannot find keytab but
> it exists in /etc/krb5.keytab:
> -r--------. 1 root root 526 Jan 3 00:58 /etc/krb5.keytab
It can find the keytab, but it can't find the right entry in the keytab.
BTW, was that copy-pasted? I've never seen a '.' after the mode bits before.
Regards,
Brian.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
