kerberos setup fails, with broken krb5.conf
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
samba4 (Ubuntu) |
Expired
|
Undecided
|
Unassigned |
Bug Description
I am attempting to install Samba 4 for use as a primary domain controller using version 4.0.0~alpha18.
A Kerberos configuration suitable for Samba 4 has been generated at /var/lib/
The official Samba 4 HOWTO http://
sudo /usr/share/
on my system is this:
[libdefaults]
Old posts on the samba mailing list seem to suggest that this file is incomplete http://
leo@blackbox:~$ kinit -V <email address hidden>
Using default cache: /tmp/krb5cc_1000
Using principal: <email address hidden>
kinit: Cannot contact any KDC for realm 'IRISHTOWN.
(The kinit is the version from the krb5-clients package.) I tried producing a localised version of the krb.conf at http://
[libdefaults]
forwardable = yes
[realms]
kdc = blackbox.
}
[domain_realm]
Unfortunately, making this /etc/krb5.conf and rebooting the server did not change the behaviour of kinit, which produces exactly the same result when tested in the new setup.
My general network configuration seems to be working. DNS is set up, and the test host commands specified in the HOWTO all seem to work. There doesn't appear to be any firewalling going on. kinit doesn't seem to be generating any messages on /var/log/syslog . There *are* also problems which show up when using smbclient to test the samba4 installation, as suggested in the HOWTO: I have described these in bug 976137 https:/
The default configuration should be sufficient if you have DNS set up properly.
Are you using krb5-user or heimdal-clients ?