0 Replies Latest reply: Dec 12, 2012 8:33 AM by MrTubz
MrTubz Level 1 Level 1 (0 points)

http://Hi All

 

Im wondering if anyone has come across this same issue and has managed to resolve it? Ive managed to replicate the problem on freshly installed server and cannot manage to get the server to be added into Kerberos properly so that AFP becomes a Kerberized service.

 

Any and all ideas would be greatly appreciated...

 

All DNS has been checked with the various commands, i.e checkhostname and the server does forward and reverse DNS correctly. Also running the changeip command comes back OK and says everything is good and nothing needs changing.

 

Attached is a screen shot of the error I get when trying to kerberize the services on a 10.6.8 server to a 10.8.2 Open Directory.

 

Screen Shot 2012-12-12 at 13.09.37.png

 

(NOTE I have changed the domain name in the logs to example.com for security.)

 

There's very little information in the logs...

 

Under the Open Directory service I have the following:

 

Configuration Log:

2012-12-11 23:23:00 +0000 - slapconfig -sso_util

2012-12-11 23:23:00 +0000 - command: /usr/sbin/sso_util configure -r ODM.EXAMPLE.COM -a diradmin -p **** -f /LDAPv3/odm.example.com -v 1 all

 

Kerberos Administration Log

Dec 11 21:21:36 fileserver.example.com kadmin.local[2018](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2019](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2020](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2021](info): No dictionary file specified, continuing without one.

 

This is repeated again and again and again

 

Kerberos Server Log (although I don't believe the server should be running as it's not an OD master)

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): routing socket readable

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): routing socket readable

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): got routing msg type 7(RTM_MISS) v5

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): got routing msg type 7(RTM_MISS) v5

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](debug): routing msg not interesting

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](debug): routing msg not interesting

 

Again, repeated over and over.

 

On a side note, if I run the command in the configuration log on the terminal, I get this output

sudo /usr/sbin/sso_util configure -r ODM.EXAMPLE.COM -a diradmin -p password -f /LDAPv3/odm.example.com -v 1 all

 

Contacting the directory server

Invalid Realm Name

 

<Edited by Host>


OS X Mountain Lion (10.8.2), OS X Mountain Lion Server