Hello Glenn
On Sonntag, 28. August 2016 01:10:12 CEST Machin, Glenn D wrote:
>
> Next step was to be able to use it for login/sudo.I modified the
> pam_krb5 step to below in system-auth. What I see on the KDC are only
> encrypted timestamp preauth.
Even if you have configured OTP, auth vi
without the otp module).
So my question is: Did i miss anything? Is there any possibility to use kadmin
remotely with otp/2FA? Or is this not possible at the moment and users have to
use kadmin.local?
Best Regards
Felix Weissbeck
Kerbe
Hi Ben and thanks for your help.
On Sonntag, 8. Januar 2017 12:33:26 CET Benjamin Kaduk wrote:
> One thing to try would be separating getting tickets and authenticating
> to kadmin, aka
>
> kinit -c FILE:/tmp/krb5cc_admin -S kadmin/admin -r5m -l5m user/admin
> kadmin -c FILE:/tmp/krb5cc_admin -p
Hi,
Am Freitag, 7. Juli 2017, 07:54:19 CEST schrieb Brennecke, Simon:
> Here is were I am a bit unsure now. I kinda expect "kinit -p simon" now to
> either ask me for my password AND my OTP token, or at least fail with some
> error message. But instead it succeeds if I just enter my password.
As
