Linux

root@pcm-ipa-01tmpr這這噸@pC米−一世p一種−01噸米proot@pcm-ipa-01 tmp# klist klist: 未找到憑據記憶體(票證記憶體文件:/tmp/krb5cc_0)freeipa kadmin ad…

  • April 10, 2015

我在 centos 上安裝了 freeipa,重新啟動服務後似乎失去了“kadmin”的身份驗證

[root@pcm-ipa-01 ~]# kadmin init
Authenticating as principal root/admin@MY.DOMAIN T with password.
kadmin: Client not found in Kerberos database while initializing kadmin interface

但是我可以直接使用使用者“admin”進行身份驗證

[root@pcm-ipa-01 ~]# kadmin -p admin
Authenticating as principal admin with password.
Password for admin@MY.DOMAIN: 
kadmin:  list_principals
get_principals: Operation requires ``list'' privilege while retrieving list.
kadmin:  

更新:

[root@ipaserver tmp]# ipa user-show admin
ipa: ERROR: did not receive Kerberos credentials


[root@pcm-ipa-01 tmp]# klist
klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0)

你到底需要什麼?

您應該使用 IPA CLI 而不是 kadmin。 http://docs.fedoraproject.org/en-US/Fedora/18/html/FreeIPA_Guide/Kerberos_Errors.html

引用自:https://serverfault.com/questions/666118