[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: ssh + kerberosV

To: Julien TOUCHE <julien.touche@lycos.com>
Subject: Re: ssh + kerberosV
From: Matthijs Mohlmann <matthijs@active2.homelinux.org>
Date: Sat, 29 Nov 2003 12:31:26 +0100
Cc: OpenBSD Misc <misc@openbsd.org>
References: <3FC85860.9030006@lycos.com> <1070095469.576.3.camel@monster.active2.homelinux.org> <3FC86976.9040407@lycos.com>

touche@localhost is the fault

you have to do it so:
$ ssh touche@hostname <- and hostname must not be localhost

And yes in OpenBSD is it /etc/kerberosV/krb5.keytab sorry :)

For localhost is no entry in the kerberos server :)

On Sat, 2003-11-29 at 10:40, Julien TOUCHE wrote:
> Matthijs Mohlmann wrote:
> 
> > Do you have a ssh key and a host key in the keytab ?
> > 
> > kadmin> add --random-key host/hostname
> > kadmin> add --random-key ssh/hostname
> > kadmin> ext -k /etc/krb5.keytab host/hostname
> > kadmin> ext -k /etc/krb5.keytab ssh/hostname
> (on openbsd, it's /etc/kerberosV/krb5.keytab, no ?)
> 
> have not the service entry, no more error but always ask for passwd.
> 
> # kdestroy
> # kinit touche
> touche@VPN.WWW's Password:
> # ssh touche@localhost
> touche@localhost's password:
> 
> and "Failed password" in authlog
> 
> 
> Regards
> 
> 		Julien
> 
> note: i'm on the list, please no cc.

Follow-Ups:
- Re: ssh + kerberosV
  - From: Julien TOUCHE <julien.touche@lycos.com>

References:
- ssh + kerberosV
  - From: Julien TOUCHE <julien.touche@lycos.com>
- Re: ssh + kerberosV
  - From: Matthijs Mohlmann <matthijs@active2.homelinux.org>
- Re: ssh + kerberosV
  - From: Julien TOUCHE <julien.touche@lycos.com>

Prev by Date: Misc, parisss slobering ffffrrrreeee vid
Next by Date: Re: ssh + kerberosV
Prev by thread: Re: ssh + kerberosV
Next by thread: Re: ssh + kerberosV
Index(es):
- Date
- Thread