[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: mod_auth_kerb and Heimdal KDC

To: Tillman Hodgson <tillman@seekingfire.com>
Subject: Re: mod_auth_kerb and Heimdal KDC
From: Daniel Kouril <kouril@ics.muni.cz>
Date: Wed, 21 Aug 2002 08:42:29 +0200
Cc: heimdal-discuss <heimdal-discuss@sics.se>
In-Reply-To: <20020821002752.A10405@seekingfire.com>; from tillman@seekingfire.com on Wed, Aug 21, 2002 at 12:27:52AM -0600
References: <20020821002752.A10405@seekingfire.com>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mutt/1.2.5i

On Wed, Aug 21, 2002 at 12:27:52AM -0600, Tillman Hodgson wrote:
> Howdy,
> 
> I've build mod_auth_kerb on a web server, suign the MIT libs as the
> author doesn't support Heimdal and it doesn't compile with Heimdal
> libs. It compiles correctly and appears to operate sanely, though it
> doesn't like my /usr/local/apache/etc/keytab:
> 
> Aug 21 00:15:34 coyote [Wed Aug 21 00:15:34 2002] [error] (13) Permission denied: access to /members/index.html failed for 192.168.23.211, reason: krb5_rd_req(): Permission denied (13)

Is the keytab readable by the Apache user?

> 
> A bit of google searching reveals that the error generally indicates
> that the application doesn't like the keytab. That makes sense if the
> MIT and Heimdal keytab format isn't the same.
> 
> Has anyone gotten mod_auth_kerb to work with Heimdal, and if so, how?

We are using an apache module available from
http://meta.cesnet.cz/software/heimdal/index.en.html

--
Dan

Follow-Ups:
- Re: mod_auth_kerb and Heimdal KDC
  - From: Tillman Hodgson <tillman@seekingfire.com>

References:
- mod_auth_kerb and Heimdal KDC
  - From: Tillman Hodgson <tillman@seekingfire.com>

Prev by Date: mod_auth_kerb and Heimdal KDC
Next by Date: Re: arcfour-hmac-md5
Prev by thread: mod_auth_kerb and Heimdal KDC
Next by thread: Re: mod_auth_kerb and Heimdal KDC
Index(es):
- Date
- Thread