[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Server not found in database

Alex Schenkman <alex@melody.se> writes:

> Do I need an entry in the database for my host as well ?

Yes, you need a keytab with the host's key. This is because login has
to verify that the krbtgt it got from the kdc is valid, and it does
that by getting a service ticket for the local host and then decrypts
it with the key stored on disk.

If this step is omitted, you can setup a fake kdc that responds to the
tgt request with a phony ticket, but still encrypted in your password.