Kerberos setup guide: DNS config missing - kinit fails
Bug #1858088 reported by
Markus F. Frisch
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Ubuntu Server Guide |
Fix Released
|
Undecided
|
Andreas Hasenack | ||
Bug Description
Currently the documentation at https:/
The new user principal can be tested using the kinit utility:
kinit steve/admin
<email address hidden>'s Password:
Th kinit command fails at this stage with a message saying
kinit: Cannot contact any KDC for realm 'EXAMPLE:COM' while getting initial credentials
Only after setting up the DNS records as described in step 5 ("The best way to allow clients to automatically determine the KDC for the Realm is using DNS SRV records. ...") does the kinit command succeed.
Revision history for this message
| Andreas Hasenack (ahasenack) wrote | #1 |
| Changed in serverguide: | |
| status: | New → Incomplete |
| assignee: | nobody → Andreas Hasenack (ahasenack) |
| Changed in serverguide: | |
| status: | Incomplete → Fix Released |
To post a comment you must log in.
I updated the kerberos guide for focal at https:/
I don't explicitly mention the kdc settings in krb5.conf, but during the course of installing the packages, debconf prompts will happen and ask you for your kdc and admin server. If you have them in DNS already, then these questions will be skipped.
If you think a brief explanation of these krb5.conf settings is important, let me know.