[imp] Auth. with Kerberos v5 error.
Bastiaan van Haastrecht - Infotheek Networks
B.vanHaastrecht at infotheek-networks.nl
Mon Mar 17 11:58:34 PST 2003
Hi,
First of all, thanks all for the reply's on my first question about how to authenticate against a w2k AD controller with Kerberos and/or LDAP. It really pushed me in the right direction.
Now I'm trying to auth with Kerberos v5 to my AD. I have the following packages installed on my test Linux redhat 8.0:
- krb5-workstation 1.2.5-8
- pam_krb5 1.56-1
- krb5-server 1.2.5-8 (Not needed, for what I know...)
- krb5-libs 1.2.5-8
My w2k AD has IP 172.31.1.1, domain is networks.local.
I configured the /var/kerberos/krb5kdc/kdc.conf as follow :
#####################
[kdcdefaults]
acl_file = /var/kerberos/krb5kdc/kadm5.acl
dict_file = /usr/share/dict/words
admin_keytab = /var/kerberos/krb5kdc/kadm5.keytab
v4_mode = nopreauth
[realms]
networks.local = {
master_key_type = des-cbc-crc
supported_enctypes = des3-cbc-sha1:normal des3-cbc-sha1:norealm des3-cbc-sha1:onlyrealm des-cbc-crc:v4 des-cbc-crc:afs3 des-cbc-crc:normal des-cbc-crc:norealm des-cbc-crc:onlyrealm des-cbc-md4:v4 des-cbc-md4:afs3 des-cbc-md4:normal des-cbc-md4:norealm des-cbc-md4:onlyrealm des-cbc-md5:v4 des-cbc-md5:afs3 des-cbc-md5:normal des-cbc-md5:norealm des-cbc-md5:onlyrealm des-cbc-sha1:v4 des-cbc-sha1:afs3 des-cbc-sha1:normal des-cbc-sha1:norealm des-cbc-sha1:onlyrealm
}
#######################
I Configured the /etc/krb5.conf as follow :
#######################
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
default_realm = networks.local
dns_lookup_realm = false
dns_lookup_kdc = false
[realms]
networks.local = {
kdc = 172.31.1.1:88
admin_server = 172.31.1.1:464
default_domain = networks.local
}
[domain_realm]
.networks.local = networks.local
networks.local = networks.local
[kdc]
profile = /var/kerberos/krb5kdc/kdc.conf
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
#######################
The problem i get when configured horde to auth with krb5 is the following :
#######################
Notice: Undefined index: params in /var/www/html/horde/lib/Auth.php on line 218
Auth_krb5: Required kerberos functions were not found.
#######################
Anyone know what could be the problem here ?
Met vriendelijke groet,
Bastiaan van Haastrecht
Infotheek Networks C.V.
Overrijn 5
2315KA Leiden
T 071-8001490
F 071-5234475
E info at infotheek-networks.nl
Bezoek ook onze website : www.infotheek-networks.nl
De gezonden informatie is uitsluitend bedoeld voor de persoon
of eenheid waaraan deze is gericht en kan vertrouwelijke
informatie of materiaal waarop het zwijgrecht van toepassing is,
bevatten. Bespreking, opnieuw verzending, verspreiding of ander
gebruik van deze informatie of het ondernemen van actie op basis
daarvan door andere personen of eenheden dan de beoogde
ontvanger is verboden. Indien u deze informatie abusievelijk heeft
ontvangen, gelieve u contact op te nemen met de afzender en het
materiaal te wissen van uw computer(s).
More information about the imp
mailing list