Highest Voted 'heimdal' Questions - Server Fault Stack Exchange

12

votes

5 answers

Which kerberos flavor?

So I'm setting up a small network with all the standard stuff (files, email, etc.) and I've decided to go with a Kerberos+LDAP solution. Any ideas or recommendations on Heimdal vs. MIT? I've used MIT before, and tangentially Heimdal, but I don't…

kerberos mitkerberos heimdal

asked Jan 09 '11 at 04:13

Michael Lowman

3,584
19
36

6

votes

1 answer

How can one enable DES-encrypted keys on an Apple KDC?

We are running a KDC on OS X 10.10 Yosemite, to which we have added a service principal for remotely accessing a (legacy) host: $ kadmin add -r host/a.b.c.d@REALM Since the host only supports des-cbc-crc key encryption, we then tried…

mac-osx kerberos mac-osx-server heimdal

asked Dec 15 '14 at 19:07

eggyal

392
4
16

6

votes

3 answers

nfs4 and kerberos: Wrong principal in request

My client/servers are both running Ubuntu 14.04 and kerberos user authentication works as intended. regular nfs4 mounts also work fine. All machines are running heimdal libraries. I haven't been able to get kerberized nfs4 working though. When…

ubuntu kerberos nfs4 heimdal

asked Jun 22 '14 at 09:41

cebalrai

151
2
2
9

4

votes

3 answers

How to integrate RADIUS with Kerberos?

We've got properly configured LDAP+Kerberos on our wired network. Now we want our users to log in to our WiFi network by using their normal credentials. I've found lots of HOWTOS about LDAP+RADIUS but none of them mention Kerberos in the pack. Can…

linux ldap kerberos radius heimdal

asked Nov 25 '10 at 15:36

minder

709
1
5
13

1

vote

1 answer

How to configure Heimdal Kerberos to use OpenLDAP?

From http://www.h5l.org/manual/HEAD/info/heimdal/Using-LDAP-to-store-the-database.html#Using-LDAP-to-store-the-database A current release of Heimdal, configured with --with-openldap=/usr/local The OpenBSD package of Heimdal is not configured with…

kerberos openbsd make heimdal

asked Aug 23 '17 at 21:06

Neil McGuigan

204
4
14

1

vote

1 answer

SASL error: No credentials were supplied, or the credentials were unavailable or inaccessible

In a Debian GNU/Linux environment, I am not able to have SASL work with kerberos: sudo /usr/sbin/sasl-sample-server -m GSSAPI -s ldap Forcing use of mechanism GSSAPI Sending list of 1 mechanism(s) S: R1NTQVBJ Waiting for client mechanism... C:…

kerberos heimdal

asked Sep 01 '16 at 13:44

473183469

1,350
1
12
23

1

vote

0 answers

How to get Kerberos tickets in sync with OS X password changes?

I've traced an issue that's been plaguing us down to a "simple" problem: Kerberos tickets are not syncing with OS X Open Directory password changes. Another way to put this: Expired/expiring ticket renewal requests are being signed with old keys…

mac-osx kerberos mac-osx-server opendirectory heimdal

asked Sep 18 '15 at 21:01

Chris

83
5

1

vote

1 answer

kadmind error - krb5_recvauth: start_seq_get is not supported in the HDBGET keytab type

I'm trying to migrate a heimdal KDC with an OpenLDAP backend from a Debian 5.x server (heimdal 1.2.dfsg.1-2.1) to a Ubuntu 14.04 server (heimdal 1.6~git20131207+dfsg-1ubuntu1.1), and am running into problems with kadmind on the 14.04 system. Some…

ubuntu openldap kerberos ubuntu-14.04 heimdal

asked Jul 03 '15 at 18:03

kartik_subbarao

121
6

1

vote

2 answers

Kerberized nfs4 mounts ERROR: No credentials found for connection to server

My client/servers are both running ubuntu 14.04 and kerberos user authentication works as intended. regular nfs4 mounts also work fine. All machines are running heimdal libraries. I haven't been able to get kerberized nfs4 working though. When…

ubuntu kerberos nfs4 heimdal

asked Jun 15 '14 at 00:17

cebalrai

151
2
2
9

1

vote

0 answers

heimdal error Decrypt integrity check failed for checksum type

when I try to authentication with heimdal-kdc ,I get this error in kdc log : (enctype aes256-cts-hmac-sha1-96) error Decrypt integrity check failed for checksum type hmac-sha1-96-aes256, key type aes256-cts-hmac-sha1-96 and authentication…

authentication kerberos heimdal

asked Nov 01 '13 at 21:16

user880414

11
4

1

vote

0 answers

heimdal kerberos in openldap issue

I think I posted this on the wrong 'sister site', so here it is. I'm having a bit of trouble getting Kerberos (Heimdal version) to work nicely with OpenLDAP. The kerberos database is being stored in LDAP itself. The KDC uses SASL EXTERNAL…

authentication openldap kerberos sasl heimdal

asked Nov 11 '12 at 21:01

Brian

41
3

1

vote

1 answer

Migrating from Heimdal to MIT Kerberos

Does anyone know of any existing documentation, HOWTO, SE question, or even a blog post that shows an example Kerberos database migration from Heimdal to MIT KDCs? Has anyone done this operation themselves, and if so, did you discover any pitfalls,…

kerberos mitkerberos heimdal

asked Jan 25 '20 at 02:12

stevegt

240
1
5

0

votes

1 answer

Heimdal kerberos ipropd-master failing on start-up with "open (null): Bad address" error

I am trying to set up a Heimdal KDC environment with one master and one replica. When I try to start the replication service on the master, it fails with this error: ipropd-master[22640]: open (null): Bad address The command I am running is…

replication kerberos heimdal

asked Feb 14 '17 at 20:48

user35042

2,601
10
32
57

0

votes

0 answers

Why is my sshd looking for a wrong kvno in keytab?

My FreeBSD box is using Heimdal Kerberos-implementation. It is registered with the corporate AD, its msDS-KeyVersionNumber-attribute is set to 2, and its keytab has the following entries: FILE:/etc/krb5.keytab: Vno Type …

active-directory ssh kerberos gssapi heimdal

asked Jun 24 '16 at 05:52

Mikhail T.

2,272
1
22
49

Questions tagged [heimdal]