[Samba] krb5.conf problems

Sean Hurley sean at cyberfarer.com
Tue Oct 21 15:37:17 GMT 2003

I am trying to authenticate against a W2K3 ADS server.
I have a single domain. The Linux box, Mandrake 9.1, Samba 3.0, will be 
providing print services.

My ADS is server-4.mydomain.com and the Linux is server-3.mydomain.com.

My /etc/krb5.conf looks like this:

 default = FILE:/var/log/kerberos/krb5libs.log
 kdc = FILE:/var/log/kerberos/krb5kdc.log
 admin_server = FILE:/var/log/kerberos/kadmind.log

 ticket_lifetime = 24000
 default_realm = SERVER-4.MYDOMAIN.COM
 dns_lookup_realm = false
 dns_lookup_kdc = false

  kdc =
  default_domain = mydomain.com

.mydomain.com = SERVER-4.MYDOMAIN.COM
 mydomain.com = SERVER-4.MYDOMAIN.COM

 profile = /etc/kerberos/krb5kdc/kdc.conf

 pam = {
 debug = false
 ticket_lifetime = 36000
 renew_lifetime = 36000
 forwardable = true
 krb4_convert = false

If  do kinit Administrator at SERVER-4.MYDOMAIN.COM I get
kinit(v5): KRB5 error code 68 while getting initial credentials

Or if kinit -v Administrator at SERVER-4.MYDOMAIN.COM
kinit(v5): No credentials cache found while validating credentials

Or if kinit -4 Administrator at SERVER-4.MYDOMAIN.COM
Password for Administrator at SERVER-4.MYDOMAIN.COM:
kinit(v4): Can't send request (send_to_kdc)

Any help is appreciated. I am completely lost.

More information about the samba mailing list