[KLUG Members] Kerberos
Jeremy Leonard
Lists at elite4god.com
Tue Sep 20 18:23:34 EDT 2005
Adam Tauno Williams wrote:
>>I'm trying to set up Kerberos Authentication for Apache2 on SLES9.
>>I've been unable to find rpm's or successfully compile an auth mod for
>>Apache2.
>>I decided to use pam_auth_mod and configure pam to use kerberos.
>>The problem I'm running into is this.
>>When I log in to the system either using pam or via apache the request
>>never gets sent to the Kerberos server unless there is an existing local
>>account in passwd. Then even if there is a local account kerberos auth
>>still fails.
>>
>>
>
>What are you using for NSS?
>
>
>
I'm not sure what you mean.
pam_unix2.conf:
auth: use_krb5
account: use_krb5
password: use_krb5
session: none
nssswitch.conf:
passwd: compat
group: compat
hosts: files dns
networks: files dns
services: files
protocols: files
rpc: files
ethers: files
netmasks: files
netgroup: files
publickey: files
bootparams: files
automount: files nis
aliases: files
>kinit works manually after su-ing to the user?
>
>
>
I can't su to the user because I can't auth as the use.
I 'kinit username'
It asks for a password and accepts the correct password.
>>The Kerberos server is a SUSE box running MIT Kerberos.
>>I'm using Heimdal Kerberos on SLES9.
>>If I manually query the kerberos server I get a ticket.
>>
>>
>
>
>
More information about the Members
mailing list