[Samba] krb5.conf problems

Sean Hurley sean at cyberfarer.com
Tue Oct 21 15:37:17 GMT 2003


I am trying to authenticate against a W2K3 ADS server.
I have a single domain. The Linux box, Mandrake 9.1, Samba 3.0, will be 
providing print services.

My ADS is server-4.mydomain.com and the Linux is server-3.mydomain.com.

My /etc/krb5.conf looks like this:

[logging]
 default = FILE:/var/log/kerberos/krb5libs.log
 kdc = FILE:/var/log/kerberos/krb5kdc.log
 admin_server = FILE:/var/log/kerberos/kadmind.log

[libdefaults]
 ticket_lifetime = 24000
 default_realm = SERVER-4.MYDOMAIN.COM
 dns_lookup_realm = false
 dns_lookup_kdc = false

[realms]
  SERVER-4.MYDOMAIN.COM = {
  kdc = 192.168.0.253
  default_domain = mydomain.com
 }

[domain_realm]
.mydomain.com = SERVER-4.MYDOMAIN.COM
 mydomain.com = SERVER-4.MYDOMAIN.COM

[kdc]
 profile = /etc/kerberos/krb5kdc/kdc.conf

[appdefaults]
 pam = {
 debug = false
 ticket_lifetime = 36000
 renew_lifetime = 36000
 forwardable = true
 krb4_convert = false
}

If  do kinit Administrator at SERVER-4.MYDOMAIN.COM I get
kinit(v5): KRB5 error code 68 while getting initial credentials

Or if kinit -v Administrator at SERVER-4.MYDOMAIN.COM
kinit(v5): No credentials cache found while validating credentials

Or if kinit -4 Administrator at SERVER-4.MYDOMAIN.COM
Password for Administrator at SERVER-4.MYDOMAIN.COM:
kinit(v4): Can't send request (send_to_kdc)

Any help is appreciated. I am completely lost.




More information about the samba mailing list