[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problem with OpenSSH



Antoine MILLET wrote:
> Actually I'm using FreeBSD 5.5 under 1000 computers (EPITA / EPITECH, 
> French Computer School).
>
> Before July we ran NetBSD / NFS and now we've moved to FreeBSD / AFS.
>
> I've a problem with OpenSSH / Heimdal / Arla
>
> - GDM run perfectily with my krb5.conf, and I get kerberos ticket and 
> afs tokens (I had an "afslog" in GDM's Xsession script).
> - KINIT work perfectly with my krb5.conf, and I get kerberos ticket 
> and afs tokens without any problem by running `kinit USERNAME`
> *but*
> OpenSSH don't log users without a keytab containing the host 
> principal... Without this keytab I can log on the host.
> I configure OpenSSH 4.6 with : ./configure --prefix=/usr 
> --sysconfdir=/etc/ssh --with-ssl-engine --with-pam 
> --with-kerberos5=/usr/local/heimdal
> I configure Heimdal 0.8 with : ./configure --prefix=/usr/local/heimdal 
> --sysconfdir=/etc/heimdal --without-ipv6 --with-x
> I configure Arla 0.43 with : ./configure --prefix=/usr/local/arla 
> --sysconfdir=/etc/arla --with-x --with-sys=/usr/src/sys 
> --with-krb5=/usr/local/heimdal 
> --with-krb5-include=/usr/local/heimdal/include 
> --with-krb5-lib=/usr/local/heimdal/lib
>
> I can't find a good solution... Normally Kerberos is one login and 
> after use ticket, but acutally I ned one keytab and mutiple login...
>
> Does anybody have an idee about that ?
>
> Thanks in advance.
>
I also tried to use OpenSSH with pam, but I obtain the same result...

Thanks.

--
Cordialement.