different outcome w/ 7.1.0 but no tokens from eiher afslog or aklog (still carps about /run/user/0/krb5cc/tkt", O_RDONLY) = -1 ENOENT)
ookpik:/data1/openafs-1.8.0pre1 # kinit -afslog admin [email protected]'s Password: ookpik:/data1/openafs-1.8.0pre1 # klist -AT Credentials cache: FILE:/tmp/krb5cc_0 Principal: [email protected] Issued Expires Principal Dec 22 15:33:01 2016 Jun 23 07:32:57 2017 krbtgt/[email protected] Dec 22 15:33:01 2016 Jun 23 07:32:57 2017 afs/[email protected] Dec 22 15:33:01 201 Jun 23 07:32:57 201 Tokens for creedon.biz ################## aklog aklog: Couldn't determine realm of user:aklog: unknown RPC error (-1765328189) while getting realm ##### open("/run/user/0/krb5cc/tkt", O_RDONLY) = -1 ENOENT (No such file or directory) ________________________________________ From: Benjamin Kaduk <[email protected]> Sent: Thursday, December 22, 2016 12:31:50 PM To: Ted Creedon Cc: Michael Meffie; [email protected] Subject: Re: [OpenAFS] Re: aklog carps Couldn't determine realm of user On Thu, Dec 22, 2016 at 07:50:02PM +0000, Ted Creedon wrote: > Yes it should but it doesn't. See the conundrum in kadmin->get krbgtkt ? > I.e how can Principal: krbtgt/[email protected] have a ticket if it was > never loggged in? It doesn't have a ticket; [email protected] has a ticket. The ticket that [email protected] has is a ticket-granting ticket, i.e., the service principal it is for is krbtgt/[email protected]. -Ben _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
