Manualshelf

NFS Services Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 ONC and NFS Software
181182183184185186187188189190
Troubleshooting NFS Services
Common Problems while using Secure NFS with Kerberos
Chapter 5 181
# hostname is the fully qualified hostname(FQDN) of host on
which kdc is
running
# domain_name is the fully qualified name of your domain
[libdefaults]
default_realm = krbhost.anyrealm.com
default_tkt_enctypes = DES-CBC-CRC
default_tgs_enctypes = DES-CBC-CRC
ccache_type = 2
[realms]
krbhost.anyrealm.com = {
kdc = krbhost.anyrealm.com:88
admin_server = krbhost.anyrealm.com
}
[domain_realm]
.anyrealm.com = krbhost.anyrealm.com
[logging]
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmin.log
default = FILE:/var/log/krb5lib.log
The user who is trying to access the mounted filesystem has not
obtained a TGT using their login.
For example, if you are a guest user and are attempting to access the
NFS mounted filesystem with Kerberos security option, you need to
have a TGT.
To identify the default principal name, enter the following command:
klist
If the default principal name is not ‘guest’, enter the following
command to obtain a TGT for the guest principal:
kinit guest