[KLUG Members] Kerberos

Jeremy Leonard Lists at elite4god.com
Tue Sep 20 18:23:34 EDT 2005

Previous message: [KLUG Members] Kerberos
Next message: [KLUG Members] Kerberos
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Adam Tauno Williams wrote:

>>I'm trying to set up Kerberos Authentication for Apache2 on SLES9.
>>I've been unable to find rpm's or successfully compile an auth mod for 
>>Apache2.
>>I decided to use pam_auth_mod and configure pam to use kerberos.
>>The problem I'm running into is this.
>>When I log in to the system either using pam or via apache the request 
>>never gets sent to the Kerberos server unless there is an existing local 
>>account in passwd. Then even if there is a local account kerberos auth 
>>still fails.
>>    
>>
>
>What are you using for NSS?
>
>  
>
I'm not sure what you mean.

pam_unix2.conf:
auth:   use_krb5
account:        use_krb5
password:       use_krb5
session:        none

nssswitch.conf:
passwd: compat
group:  compat

hosts:  files dns
networks:       files dns

services:       files
protocols:      files
rpc:    files
ethers: files
netmasks:       files
netgroup:       files
publickey:      files

bootparams:     files
automount:      files nis
aliases:        files


>kinit works manually after su-ing to the user?
>
>  
>
I can't su to the user because I can't auth as the use.

I 'kinit username'
It asks for a password and accepts the correct password.

>>The Kerberos server is a SUSE box running MIT Kerberos.
>>I'm using Heimdal Kerberos on SLES9.
>>If I manually query the kerberos server I get a ticket.
>>    
>>
>
>  
>

Previous message: [KLUG Members] Kerberos
Next message: [KLUG Members] Kerberos
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Members mailing list