[Samba] krb5_cc_get_principal failed (No credentials cache found)
ram dass
mailtodazz at yahoo.com
Fri Mar 11 05:42:13 GMT 2005
Hi i am using Samba 3.0.0-14.3E.i am not getting tickets from the ADS server which is running on Win2K.i am seeing the logs in /var/log/samba/winbind.log
i got these messages
[2005/03/11 10:36:36, 1] libsmb/clikrb5.c:ads_krb5_mk_req(269)
krb5_cc_get_principal failed (No credentials cache found)
[2005/03/11 11:01:00, 1] libads/ads_ldap.c:ads_name_to_sid(64)
name_to_sid: root not found
[2005/03/11 11:01:00, 1] nsswitch/winbindd_group.c:winbindd_getgroups(959)
user 'root' does not exist
## klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: ramdassv at CEDEL.CO.IN
Valid starting Expires Service principal
03/10/05 18:43:42 03/11/05 04:43:42 krbtgt/CEDEL.CO.IN at CEDEL.CO.IN
Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached
my smb.conf is
[global]
realm = CEDEL.CO.IN
netbios name = qa1
allow trusted domains = No
workgroup = cedel
security = ADS
idmap backend = idmap_rid:cedel=15000-200000
idmap uid = 15000-20000
idmap gid = 15000-20000
winbind use default domain = Yes
#winbind separator = .
winbind cache time = 10
winbind enum users = Yes
winbind enum groups = Yes
winbind use default domain = Yes
template shell = /bin/bash
template homedir = /home/%D/%U
use sendfile = yes
log file = /var/log/samba/%m.log
password server = 192.168.11.4
encrypt passwords = yes
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
username map = /etc/samba/smbusers
[shares]
[homes]
comment = Home Directories
path = /home/%U
valid users = %D+%U
read only = no
browseable = no
in /etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
clockskew = 300
Dns_lookup_realm = false
Dns_lookup_kdc = false
default_realm = CEDEL.CO.IN
[realms]
CEDEL.CO.IN = {
kdc = sam.cedel.co.in:88
default_domian = CEDEL.CO.IN
kpasswd_server = sam.cedel.co.in
admin_server = sam.cedel.co.in:749
}
[domain_realm]
.CEDEL.CO.IN = CODEL.CO.IN
pls help me out to solve this problem.
thanks and regards,
Ramadass.v
---------------------------------
Do you Yahoo!?
Read only the mail you want - Yahoo! Mail SpamGuard.
More information about the samba
mailing list