[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AFS Keyfile Problem

Hi,

Thanks for the tips,

kadmin> list -l afs
pe/root@ENERGY.KTH.SE's Password:
               Principal: afs@ENERGY.KTH.SE
       Principal expires: never
        Password expires: never
    Last password change: never
         Max ticket life: 1 day
      Max renewable life: 1 week
                    Kvno: 5
                   Mkvno: 0
                  Policy: none
   Last successful login: never
       Last failed login: never
      Failed login count: 0
           Last modified: 2004-05-22 16:23:13 UTC
                Modifier: pe/root@ENERGY.KTH.SE
              Attributes:
Keytypes(salttype[(salt-value)]): des-cbc-crc(pw-salt), 
des-cbc-md4(pw-salt), des-cbc-md5(pw-salt), des3-cbc-sha1(pw-salt)

I seem to have a `des-cbc-md5' key.

>
>`ktutil -k AFSKEYFILE:KeyFile get afs@MY.REALM'
>
srvlin01:~# ktutil -k AFSKEYFILE:/etc/openafs/server/KeyFile get 
afs@ENERGY.KTH.SE
pe/root@ENERGY.KTH.SE's Password:
ktutil: krb5_kt_add_entry: End of credential cache reached
srvlin01:~# ls -l /etc/openafs/server/KeyFile
-rw-------    1 root     root            0 May 24 22:40 
/etc/openafs/server/KeyFile

Seems to be empty ....

>
>or you can extract it with kadmin
>
>     kadmin> ext -k AFSKEYFILE:/usr/afs/etc/KeyFile afs@My.CELL.NAME
>
kadmin> ext -k AFSKEYFILE:/usr/afs/etc/KeyFile afs@ENERGY.KTH.SE
pe/root@ENERGY.KTH.SE's Password:
kadmin: krb5_kt_add_entry: End of credential cache reached
kadmin> quit
srvlin01:~# ls -l /usr/afs/etc/KeyFile
-rw-------    1 root     root            0 May 24 22:34 /usr/afs/etc/KeyFile

Empty again ....

kadmin also seems to what things under /usr/afs instead of /etc/openafs

MvH
Pär