I am going nuts here trying to debug a problem.
So I need to connect this Linux Box to an AD Domain through Kerberos.
here is my krb5.conf:
[libdefaults]
default_realm=OURDOMAIN.COM
dns_lookup_realm=true
dns_lookup_kdc=true
ticket_lifetime=24h
forwardable = true
proxiable = true
[realms]
OURDOAMIN.COM = {
kdc = VSH002.OURDOMAIN.COM:88
admin_server = VSH002.OURDOMAIN.COM:749
default_domain = OURDOMAIN.COM
}
[domain_realm]
.ourdomain.com=OURDOMAIN.COM
ourdomain.com=OURDOMAIN.COM
Now /etc/hosts:
10.1.10.51 VSH002.OURDOMAIN.COM VSH002 vsh002
And resolv.conf:
domain ourdomain.com
search ourdomain.com
nameserver 10.1.10.51
The Command kinit user@OURDOMAIN.COM works just fine.
Also klist -ke shows the correct principal
kinit -V also connects successfully.
The Problem: After I generate the keytab with kpass on the Active Directory side and try to connect using
kinit -k
I get:
Cannot resolve network address for KDC in realm while getting initial credentials.
Network Adress can not be resolved? How is that possible?
Someone to help?
Thank You, Eugene.