[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

heimdal as kaserver



Hi there,

I am trying to setup heimdal as a kerberos 5 and as a kaserver. I downloaded 
Heimdal 0.6 and built it as an RPM (./configure  --prefix=/usr/heimdal 
--enable-kaserver --with-ipv6 && make && make install ) I configured it (in 
/var/heimdal/kdc.conf) and setup a realm as described in the manual 
(http://www.pdc.kth.se/heimdal/heimdal.html) and it works fine as long as i'm 
grabbing krb5 tickets. But it did not bind to the kaserver port (7004).

Any ideas on what i'm doing wrong?
Thanks in advance,
Renato Arruda

[rarruda@samba heimdal]$ cat /var/heimdal/kdc.conf 
[libdefaults]
        default_realm = ARRUDA.ORG
#       clockskew = 300

[realms]
        ARRUDA.ORG = {
                kdc = 10.2.1.10
        }
[domain_realm]
        .rarruda.org = ARRUDA.ORG
        rarruda.org = ARRUDA.ORG

[kdc]
        require-preauth = false         # or v4/afs will lose
        enable-kaserver = true
        afs-cell = arruda.org
        enable-524 = true
        enable-kerberos4 = true
        check-ticket-addresses = false  # ssh w/krb4+afs wants this
[kadmin]
        default_keys = v4 v5 afs3
        v4-realm = ARRUDA.ORG
        afs-cell = arruda.org
[rarruda@samba heimdal]$ netstat -ln
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
tcp        0      0 0.0.0.0:32769           0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:32770         0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:749             0.0.0.0:*               LISTEN      
tcp        0      0 10.2.1.10:750           0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:750           0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:111             0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:6000            0.0.0.0:*               LISTEN      
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      
tcp        0      0 10.2.1.10:88            0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:88            0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:2040          0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      
tcp        0      0 10.2.1.10:4444          0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:4444          0.0.0.0:*               LISTEN      
udp        0      0 0.0.0.0:32769           0.0.0.0:*                           
udp        0      0 0.0.0.0:32772           0.0.0.0:*                           
udp        0      0 10.2.1.10:88            0.0.0.0:*                           
udp        0      0 127.0.0.1:88            0.0.0.0:*                           
udp        0      0 0.0.0.0:7000            0.0.0.0:*                           
udp        0      0 0.0.0.0:7001            0.0.0.0:*                           
udp        0      0 0.0.0.0:7002            0.0.0.0:*                           
udp        0      0 0.0.0.0:7003            0.0.0.0:*                           
udp        0      0 10.2.1.10:4444          0.0.0.0:*                           
udp        0      0 127.0.0.1:4444          0.0.0.0:*                           
udp        0      0 0.0.0.0:7005            0.0.0.0:*                           
udp        0      0 0.0.0.0:7007            0.0.0.0:*                           
udp        0      0 0.0.0.0:7008            0.0.0.0:*                           
udp        0      0 0.0.0.0:7021            0.0.0.0:*                           
udp        0      0 10.2.1.10:750           0.0.0.0:*                           
udp        0      0 127.0.0.1:750           0.0.0.0:*                           
udp        0      0 0.0.0.0:111             0.0.0.0:*                           
udp        0      0 0.0.0.0:629             0.0.0.0:*                           
udp        0      0 10.2.1.10:123           0.0.0.0:*                           
udp        0      0 127.0.0.1:123           0.0.0.0:*                           
udp        0      0 0.0.0.0:123             0.0.0.0:*                           
Active UNIX domain sockets (only servers)
Proto RefCnt Flags       Type       State         I-Node Path
(...)

-- 
Renato Arruda <rarruda@rarruda.org> http://www.rarruda.org/
PGP Fingerprint = 6F1B 519F CBAA 2713 D2CD  ABFD E6AF 5FED A2AA 75DD