- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Configuring kerberos for CIFS
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-19-2010 07:37 AM
тАО03-19-2010 07:37 AM
I am having some problems trying to joing the domain from a 11.23 server. The master KDC is a windows 2003 server that also acts as ntp server.
I have managed to configure it in SLES 10 but with HPUX, I am really lost.
This is the error I am getting:
# /opt/samba/bin/net ads join -U administrator
administrator's password:
/usr/lib/dld.sl: Unresolved symbol: krb5_cc_close (code) from /opt/samba/bin/net
Abort(coredump)
and this is what I have installed:
# swlist -l fileset |grep erberos
# KRB5-Client B.11.23 Kerberos V5 Client Versio
n 1.0
KRB5-Client.KRB5-64SLIB B.11.23 Kerberos Client 64 bit sh
ared libraries (PA-RISC)
KRB5-Client.KRB5-PRG B.11.23 Kerberos Client header fi
les and sample programs
KRB5-Client.KRB5-RUN B.11.23 Kerberos Client commands
(PA-RISC)
KRB5-Client.KRB5-SHLIB B.11.23 Kerberos Client 32 bit sh
ared libraries (PA-RISC)
# PAM-Kerberos C.01.23 PAM-Kerberos Version 1.23
PAM-Kerberos.PAM-KRB-64SLIB C.01.23 PAM-Kerberos 64 bit Share
d Library
PAM-Kerberos.PAM-KRB-DEMO C.01.23 PAM-Kerberos Demonstratio
n
PAM-Kerberos.PAM-KRB-MAN C.01.23 PAM-Kerberos Man Page
PAM-Kerberos.PAM-KRB-RUN C.01.23 PAM-Kerberos Runtime
PAM-Kerberos.PAM-KRB-SHLIB C.01.23 PAM-Kerberos 32 bit Share
d Library
Thanks in advance for any suggestion.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-19-2010 10:10 AM
тАО03-19-2010 10:10 AM
Re: Configuring kerberos for CIFS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-22-2010 04:28 AM
тАО03-22-2010 04:28 AM
Re: Configuring kerberos for CIFS
I am trying to map some shares from a SLES 10 box using CIFS. So I am trying to set up a CIFS client in HP-UX.
I understand I need kerberos client to establish some security.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-22-2010 06:05 AM
тАО03-22-2010 06:05 AM
Re: Configuring kerberos for CIFS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-22-2010 06:17 AM
тАО03-22-2010 06:17 AM
Re: Configuring kerberos for CIFS
Then share your directories from SLES10 by running a nfsd server.
Then mount on your HP-UX server the exported volume with mount
Horia.
Horia.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-22-2010 07:48 AM
тАО03-22-2010 07:48 AM
Re: Configuring kerberos for CIFS
So in short, it is not possible to share files between SLES & HPUX using CIFS?
I have used NFS in the past, but I thought CIFS was the way forward...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-22-2010 02:14 PM
тАО03-22-2010 02:14 PM
Re: Configuring kerberos for CIFS
Yes you can use CIFS. But if your HP-UX server is the CIFS Client, then the SLES server will have to be a CIFS (Samba) server. If that is the case, then the HP-UX server does not need to be joined to the domain. You can use the CIFS Client cifslogin command to authenticate. You asked about this stuff back in 2007 (http://forums13.itrc.hp.com/service/forums/questionanswer.do?threadId=1155754). So on HP-UX you will need the latest CIFS Client (A.02.02.02) and the latest Kerberos client (1.6.2.06). And your SLES server will need to share the target directories out with Samba. On the CIFS Client you will do a cifsmount to mount the remote share, and a cifslogin to authenticate a user (with Kerberos). Or you can use NFS.
Eric Roseme
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-09-2010 07:15 AM
тАО04-09-2010 07:15 AM
Re: Configuring kerberos for CIFS
I have finally managed to install the latest software, not without having some delay as HP website was down for a couple of days.
As you pointed out I have tried to implement kerberos with different versions of HPUX and SLES but I have to abandon it to sort out other things at work.
Well I am stuck again, and this is the point now:
I mount the share with
#cifsmount //lindev10/home/oscar /home/oscar -U oscar
and after typing the password comes back with
oscar's password on lindev10:
SRV: Invalid netname
When I cd to the directory I cannot see any of files of the share. But if I do a mount command it shows in the last line:
/home/oscar on lindev10:/home:/ soft,noac,novj,retrans=3,timeo=50,acregmin=0,acregmax=0,acdirmin=0,acdirmax=0,proto=udp,NFSv3,dev=4000021 on Fri Apr 9 15:49:56 2010
What am I doing wrong?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-12-2010 08:18 AM
тАО04-12-2010 08:18 AM
SolutionSo you are going to use CIFS Client on HP-UX to mount a CIFS share on a remote server that is either a native Windows server or a Samba server exporting a directory for CIFS/SMB protocol.
Here is the best way to do this:
cifsmount //targetserver.org.com/targetdirectory /hpuxmountpoint -U administrator
The cifsmount establishes the target server and directory and the local mountpoint. you will need a user on the target server with admin rights to mount the share. But so far no one has local access to the share - each user has to authenticate to the remote share.
cifslogin //targetserver.org.com/targetdirectory /hpuxmountpoint -U username
username is a user on the target server (Windows or Samba) who has read or write or both access to the share.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО04-15-2010 09:25 AM
тАО04-15-2010 09:25 AM
Re: Configuring kerberos for CIFS
Thanks for your help, it is sort of working. The only problem is that I am only able to mount the whole share rather than a subdirectory from the share, which is a bit of a pain.
So I ran this command as root:
cifsmount //targetserver.org.com/share /hpuxmountpoint
and when logged as a user:
cifslogin //targetserver.org.com/share /hpuxmountpoint -U username
Do you know any way of mounting only the desired directory rather than the whole share?
Cheers,