[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: GSSAPI Error

To: <OpenLDAP-software@OpenLDAP.org>
Subject: RE: GSSAPI Error
From: "Chip Burke" <cburke@innova-partners.com>
Date: Thu, 2 Feb 2006 17:29:43 -0500
Importance: Normal
In-reply-to: <01C3D26E281CBE93F62FB940@cadabra-sw.stanford.edu>

Sorry, I sent this to the wrong address. Here is my response again.

>Sorry, yes, I have a principal called admin/admin and it is indeed 
> listed as my default when I run klist.

________________________________________
Chip Burke



--On Thursday, February 02, 2006 4:49 PM -0500 Chip Burke 
<cburke@innova-partners.com> wrote:

> Just for testing purposes I set the permissions on ldap.keytab to 777 and
> no luck.
>
> As for a ticket, I do have a ticket. Klist has
> ldap/Athens.innova.local@INNOVA.LOCAL listed...
> ldap/Athens.innova.local@INNOVA.LOCAL being my principle and the ticket
> time period is right.

This shouldn't be your ticket, this should be the principal in the keytab 
that the ldap sever has access to...

For example:


tribes:~> klist
Ticket cache: FILE:/tmp/krb5cc_54046_kYS222
Default principal: quanah@stanford.edu

Valid starting     Expires            Service principal
02/02/06 12:05:56  02/02/06 19:55:51  ldap/ldap9.stanford.edu@stanford.edu
02/02/06 13:44:05  02/02/06 19:55:51 
ldap/ldap-dev0.stanford.edu@stanford.edu
02/02/06 13:48:38  02/02/06 19:55:51 
ldap/ldap-dev1.stanford.edu@stanford.edu

As you can see, my ticket is for "quanah@stanford.edu" and I've accessed 
the ldap-dev0, ldap-dev1, and ldap9 LDAP servers @ Stanford.


--Quanah

--
Quanah Gibson-Mount
Principal Software Developer
ITSS/Shared Services
Stanford University
GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html

References:
- RE: GSSAPI Error
  - From: Quanah Gibson-Mount <quanah@stanford.edu>

Prev by Date: Re: How to recover replication?
Next by Date: Re: Replication oddity in 2.3.19
Index(es):
- Chronological
- Thread