HPE Community
Operating System - HP-UX
1752584 Members
4723 Online
108788 Solutions
New Discussion юеВ

Re: How to configure kerberos for cifs server in HPUX 11.31

 
SOLVED
Go to solution
senthil_kumar_1
Super Advisor

тАО10-14-2009 05:21 AM

тАО10-14-2009 05:21 AM

How to configure kerberos for cifs server in HPUX 11.31

Hi All,

In hpux 11.31, i want to configure CIFS server A.02.03.04.

For that i have configured kerberos (/etc/krb5.conf), i am getting some error while connecting kerberos with ADS.

For your information:

My Domain name - abc.xyz.com

DC name - sen.abc.xyz.com (windows 2003)


Please find my configuation file

# vi /etc/krb5.conf

[libdefaults]
default_realm = ABC.XYZ.COM
default_tkt_enctypes = DES-CBC-CRC
default_tgs_enctypes = DES-CBC-CRC
ccache_type = 2

[realms]
ABC.XYZ.COM = {
kdc = sen.abc.xyz.com:88
admin_server = sen.abc.xyz.com
}

[domain_realm]
.sen.abc.xyz.com = ABC.XYZ.COM

[logging]
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmin.log
default = FILE:/var/log/krb5lib.log


# /opt/dce/bin/kinit Administrator@EMDNA.EMDIESELS.COM
Enter Password:
kinit: Can't open/find configuration file (dce / krb) while getting initial credentials


How to solve this error.
0 Kudos
Reply
5 REPLIES 5
eric roseme
Respected Contributor

тАО10-14-2009 08:28 AM

тАО10-14-2009 08:28 AM

Solution

Re: How to configure kerberos for cifs server in HPUX 11.31

Wrong kinit: use /usr/bin/kinit

I assume that

/opt/dce/bin/kinit Administrator@EMDNA.EMDIESELS.COM

matches your default realm.
Reply
senthil_kumar_1
Super Advisor

тАО10-15-2009 06:59 AM

тАО10-15-2009 06:59 AM

Re: How to configure kerberos for cifs server in HPUX 11.31

Thanks a lot

now it is working fine.

But still i am having some issues while integrating samba with ADS.


I think that winbind is not being started properly.

I am not able to start winbind thru SWAT and CLI.

How to find if winbind is installed.

0 Kudos
Reply
eric roseme
Respected Contributor

тАО10-15-2009 07:35 AM - last edited on тАО01-20-2022 02:14 AM by

тАО10-15-2009 07:35 AM - last edited on тАО01-20-2022 02:14 AM by

Re: How to configure kerberos for cifs server in HPUX 11.31

Try:

/opt/samba/bin/startwinbind

Then:

ps -ef | grep win

If winbind does not start, then go to /etc/opt/samba/smb.conf and set "log level = 3" and re-start winbind. Then look in:

/var/opt/samba

for log.winbindd and see if you can figure out what the problem is. winbind will not start if it is not configured correctly in smb.conf - you have to get all that stuff right.

However, winbind has *nothing* to do with joining the domain. If you are having problems joining the domain, read this:

http://www.docs.hp.com/en/14985/HPCIFSKerberosV105.pdf

[Admin : The above link is no longer valid. Please visit support.hpe.com]

I am updating it right now for W2008 and also the new CIFS Server A.02.04. If you can do it, upgrade your version to A.02.04 so that you will be compatible with W2008. Better to do it now.

ALSO - GO GET THE NEW KRB5 CLIENT: 1.6.2.04. It's here:

https://h20392.www2.hp.com/portal/swdepot/try.do?productNumber=KRB5CLIENT

[Admin : The above link is no longer valid. You may refer the below link or visit support.hpe.com]

https://support.hpe.com/connect/s/search?language=en_US#q=KRB5%20CLIENT%3A%201.6.2.04&t=All&sort=relevancy&numberOfResults=25&f:@kmdoclanguagecode=[cv1871440]&hpe=1

(assuming you are on 11iv2 or 11iv3)

Reply
Ted Brooks TPS
Occasional Advisor

тАО01-06-2012 06:51 AM

тАО01-06-2012 06:51 AM

Re: How to configure for cifs server in HPUX 11.31

Links are dead.  Why cant the BSC link them accordingly?

0 Kudos
Reply
Torsten.
Acclaimed Contributor

тАО01-06-2012 06:57 AM - last edited on тАО01-20-2022 02:10 AM by

тАО01-06-2012 06:57 AM - last edited on тАО01-20-2022 02:10 AM by

Re: How to configure for cifs server in HPUX 11.31

See

Accessing the Former docs.hp.com Documentation on the Business Support Center (BSC)

from

http://h20000.www2.hp.com/bizsupport/TechSupport/DocumentIndex.jsp?lang=en&cc=us&taskId=101&prodClassId=10008&contentType=SupportManual&docIndexId=64255&prodTypeId=18964&prodSeriesId=3367813

[Admin :Above link is no longer active. You may refer below link or visit support.hpe.com]

https://support.hpe.com/connect/s/search?language=en_US#q=3367813&t=Documents&sort=relevancy&layout=table&numberOfResults=25&f:@kmdoclanguagecode=[cv1871440]&hpe=1

 


Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.