[HCoop-Help] kinit to hcoop fails with "PREAUTH_FAILED"
Zrajm C Akfohg
zrajmc at gmail.com
Fri May 29 09:59:26 EDT 2009
On 5/29/09, Adam Megacz <megacz at hcoop.net> wrote:
>
> Zrajm C Akfohg <zrajmc at gmail.com> writes:
> >>, and does it work if you try it again?
> >
> > Nope, it still doesn't work.
> http://wiki.hcoop.net/MemberManual/ShellAccess/TroubleshootingKerberos
Oookay. Following the procedures now... :)
My problem is that kinit gives me:
$ ssh zrajm at mire.hcoop.net date && kinit zrajm at HCOOP.NET
Password:
Fri May 29 09:49:32 EDT 2009
zrajm at HCOOP.NET's Password:
kinit: krb5_get_init_creds: PREAUTH_FAILED
This works excellently from my computer at work (both home & work
machine runs Ubuntu Intrepid Ibex).
Step 1: turn off your firewall
Last line of traceroute output says "deleuze.hcoop.net" and contains
no asterisks. Should be ok.
ssh zrajm at mire.hcoop.net date && traceroute kerberos1.hcoop.net
Password:
Fri May 29 09:45:56 EDT 2009
traceroute to kerberos1.hcoop.net (69.90.123.67), 30 hops max, 40 byte packets
1 speedtouch.lan (192.168.0.254) 95.315 ms 94.557 ms 93.953 ms
2 d83-183-0-1.cust.tele2.se (83.183.0.1) 26.175 ms 28.248 ms 32.097 ms
3 kst80.ge2-1s2330.swip.net (130.244.82.197) 32.704 ms 34.994 ms 34.940 ms
4 kst-ncore-1.tengigabiteth2-3.swip.net (130.244.53.77) 37.238 ms
37.235 ms 40.678 ms
5 kst-core-1.gigabiteth14-0-0.swip.net (130.244.52.105) 40.630 ms
40.567 ms 42.664 ms
6 gbg-core-1.pos8-0-0.swip.net (130.244.39.142) 46.567 ms 38.521
ms 37.309 ms
7 ams17-core-1.pos6-0-0.swip.net (130.244.205.150) 48.955 ms
48.984 ms 49.894 ms
8 ams-core-1.tengige0-0-0-5.swip.net (130.244.49.210) 49.811 ms
51.275 ms 51.184 ms
9 ams16-core-1.gigabiteth13-1-0.swip.net (130.244.49.197) 50.749 ms
50.832 ms 57.906 ms
10 ams-sara-cor-1.peer1.net (195.69.145.209) 56.343 ms 52.310 ms 46.708 ms
11 oc48-so2-1-0.ldn-teleh-dis-1.peer1.net (216.187.115.49) 55.334 ms
53.833 ms 54.421 ms
12 216.187.115.33 (216.187.115.33) 143.179 ms 145.098 ms 143.245 ms
13 oc48-po3-0.nyc-75bre-dis-1.peer1.net (216.187.115.134) 153.426 ms
151.131 ms 151.820 ms
14 216.187.115.170 (216.187.115.170) 153.091 ms 153.492 ms 143.897 ms
15 deleuze.hcoop.net (69.90.123.67) 143.094 ms 148.122 ms 148.876 ms
(There are some several seconds long pauses between lines 11 & 12 and
13 & 14, however -- could this affect?)
Step 2: check your krb5.conf
Added the two dns_lookup_* lines suggested in the troubleshooting
document. It made no difference. I attach my current (after adding the
two suggested lines) /etc/krb5.conf for reference.
Step 3: make sure your DNS is working
I see "kerberos1.hcoop.net" in the dig output. So this seems to work.
$ ssh zrajm at mire.hcoop.net date && dig -t SRV _kerberos._udp.hcoop.net
Password:
Fri May 29 09:47:13 EDT 2009
; <<>> DiG 9.5.0-P2 <<>> -t SRV _kerberos._udp.hcoop.net
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 11017
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 3
;; QUESTION SECTION:
;_kerberos._udp.hcoop.net. IN SRV
;; ANSWER SECTION:
_kerberos._udp.hcoop.net. 111616 IN SRV 0 1 88 kerberos2.hcoop.net.
_kerberos._udp.hcoop.net. 111616 IN SRV 0 1 88 kerberos1.hcoop.net.
;; AUTHORITY SECTION:
hcoop.net. 95359 IN NS ns2.hcoop.net.
hcoop.net. 95359 IN NS ns1.hcoop.net.
;; ADDITIONAL SECTION:
kerberos1.hcoop.net. 111616 IN A 69.90.123.67
kerberos2.hcoop.net. 111616 IN A 69.90.123.70
ns1.hcoop.net. 90423 IN A 69.90.123.67
;; Query time: 34 msec
;; SERVER: 192.168.0.254#53(192.168.0.254)
;; WHEN: Fri May 29 15:54:21 2009
;; MSG SIZE rcvd: 204
/zrajm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: krb5.conf
Type: application/octet-stream
Size: 3759 bytes
Desc: not available
Url : http://lists.hcoop.net/pipermail/hcoop-help/attachments/20090529/0cdebaff/attachment.obj
More information about the HCoop-Help
mailing list