[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: need more explanation on krb4->krb5 conversion

To: David Komanek <xdavid@lib-eth.natur.cuni.cz>
Subject: Re: need more explanation on krb4->krb5 conversion
From: Love <lha@stacken.kth.se>
Date: Tue, 30 Sep 2003 20:44:26 +0200
Cc: heimdal-discuss@sics.se, mmokrejs@natur.cuni.cz
In-Reply-To: <Pine.OSF.4.58.0309301648040.198353@lib-eth.natur.cuni.cz> (DavidKomanek's message of "Tue, 30 Sep 2003 17:08:37 +0200 (CEST)")
References: <Pine.OSF.4.58.0309301648040.198353@lib-eth.natur.cuni.cz>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.1002 (Gnus v5.10.2) Emacs/21.3 (berkeley-unix)


David Komanek <xdavid@lib-eth.natur.cuni.cz> writes:

> Hi all,
>
> I am trying to undertand, why am not able to use principals converted from
> krb4 to heimdal. Using kdc with the "default" database which is created
> with "kadmin init" command works well, even if I "ank" new principals. I
> am able to get tickets, list them, destroy them, everything seems to work
> fine.

It was a long time since I did this, but I though I wrote most of it down
into the documentation.

> But after the conversion of the old version principals I run into
> problems:
>
> /usr/local/heimdal/libexec/hprop -n --source=krb4-db -d
> /var/kerberos/principal --master-key=/.k -E pteryx.natur.cuni.cz |
> /usr/local/heimdal/libexec/hpropd -n
  
I think you want to run it like this:

If you are converting a kerberos 4 to kerberos 5 database on the same host,
you probably want to run it like this:


 hprop -n --source=krb4-dump -d /var/kerberos/principal.dump \
      --master-key=/.k | hpropd -n

> ( /.k is the old master key from the krb4 database, right ? )

yes.

Love

PGP signature

References:
- need more explanation on krb4->krb5 conversion
  - From: David Komanek <xdavid@lib-eth.natur.cuni.cz>

Prev by Date: Re: need more explanation on krb4->krb5 conversion
Prev by thread: Re: need more explanation on krb4->krb5 conversion
Index(es):
- Date
- Thread