[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: more kerberos setup help



On Friday 14 April 2006 12:10, Warren Turkal wrote:
> wt@littleblackbook0:~$ ldapsearch
> SASL/GSSAPI authentication started
> ldap_sasl_interactive_bind_s: Local error (-2)
>         additional info: SASL(-1): generic failure: GSSAPI Error:
> Miscellaneous failure (see text) (Server
> (krbtgt/82.49.160@BIOCYCLE.ATMOS.COLOSTATE.EDU) unknown)
>
> Actually, I don't understand why the ldap search is looking for the
> krbtgt/82.49.160... principal. I have
> krbtgt/BIOCYCLE.ATMOS.COLOSTATE.EDU@BIOCYCLE.ATMOS.COLOSTATE.EDU. Isn't
> that what it should be looking for?

I found the problem. There was no reverse DNS entry for the IPs running the 
ldap service. They randomly seem to have disappeared from my department level 
DNS server.

wt
-- 
Warren Turkal, Research Associate III/Systems Administrator
Colorado State University, Dept. of Atmospheric Science