In addition, I am attaching the krb5kdc log for successful authentication on
older client machine:
Mar 11 11:11:07 xpsserver.freeipa.lab krb5kdc[1225](info): AS_REQ (8 etypes
{aes256-cts-hmac-sha1-96(18), aes128-cts-hmac-sha1-96(17),
aes256-cts-hmac-sha384-192(20), aes128-cts-hmac-sha256-128(19
Thanks for the suggestion.
I tried changing the password of one of the old user. It didn't help and the
issue is still there.
I can login to server(ver. 4.9.2) and older clients with the changed password,
but not to the new client machine.
The older clients are actually not that old. They run Ubu
Thanks for the comment.
I did it after checking the logs showing pre-authentication error. While
searching online, I found this
thread
(https://sssd-users.fedorahosted.narkive.com/JkDs5m3z/sssd-authentication-fails-with-cannot-read-password-after-upgrading-to-1-14).
However, it doesn't help, a
Yeah the password is right.
On a separate note, on the client machine I had login problem on both
Ubuntu(installed before)
and Fedora. So the problem could be with server.
For pre-authentication I used following commands:
# kadmin.local
kadmin.local: modprinc +requires_preauth testuser
Principal
Thanks for the reply.
Following are the details:
Server ip: 192.168.0.245
Client : 192.168.0.248
krb5_child.log content:
(2021-03-10 15:47:06): [krb5_child[3066]] [main] (0x0400): krb5_child started.
(2021-03-10 15:47:06): [krb5_child[3066]] [unpack_buffer] (0x1000): total
buffer size: [96]
(2021-
I have a small FreeIPA setup and user login works ok on the client systems.
Recently, I wanted to add a new machine as a client.
I loaded Fedora 33 on the machine and installed freeipa-client. Installation
seems to be ok and I can see all users with find-user
on the client system. However, when e
