Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: MrTubz
MrTubz Author
User level: Level 1
0 points

Kerberize 10.6.8 Services to 10.8.2 OD Master

http://Hi All


Im wondering if anyone has come across this same issue and has managed to resolve it? Ive managed to replicate the problem on freshly installed server and cannot manage to get the server to be added into Kerberos properly so that AFP becomes a Kerberized service.


Any and all ideas would be greatly appreciated...


All DNS has been checked with the various commands, i.e checkhostname and the server does forward and reverse DNS correctly. Also running the changeip command comes back OK and says everything is good and nothing needs changing.


Attached is a screen shot of the error I get when trying to kerberize the services on a 10.6.8 server to a 10.8.2 Open Directory.


User uploaded file


(NOTE I have changed the domain name in the logs to example.com for security.)


There's very little information in the logs...


Under the Open Directory service I have the following:


Configuration Log:

2012-12-11 23:23:00 +0000 - slapconfig -sso_util

2012-12-11 23:23:00 +0000 - command: /usr/sbin/sso_util configure -r ODM.EXAMPLE.COM -a diradmin -p **** -f /LDAPv3/odm.example.com -v 1 all


Kerberos Administration Log

Dec 11 21:21:36 fileserver.example.com kadmin.local[2018](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2019](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2020](info): No dictionary file specified, continuing without one.

Dec 11 21:21:36 fileserver.example.com kadmin.local[2021](info): No dictionary file specified, continuing without one.


This is repeated again and again and again


Kerberos Server Log (although I don't believe the server should be running as it's not an OD master)

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): routing socket readable

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): routing socket readable

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): got routing msg type 7(RTM_MISS) v5

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](info): got routing msg type 7(RTM_MISS) v5

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](debug): routing msg not interesting

Dec 12 13:03:59 fileserver.example.com krb5kdc[1312](debug): routing msg not interesting


Again, repeated over and over.


On a side note, if I run the command in the configuration log on the terminal, I get this output

sudo /usr/sbin/sso_util configure -r ODM.EXAMPLE.COM -a diradmin -p password -f /LDAPv3/odm.example.com -v 1 all


Contacting the directory server

Invalid Realm Name


<Edited by Host>

OS X Mountain Lion (10.8.2), OS X Mountain Lion Server

Posted on Dec 12, 2012 8:23 AM

Reply

There are no replies.

Kerberize 10.6.8 Services to 10.8.2 OD Master

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up