From: Adams Kevin J (kevin.adams@PHS.COM)
Date: Tue May 20 2003 - 14:37:12 EDT
I can't speak for IBM's SP Kerberos 4, but the MIT version 5 lets you kinit
from a detached keytab file as in:
/usr/local/bin/kinit -k -t /usr/local/var/krb5kdc/cron.keytab cron
I use this from a script and just do a kdestroy when I'm done.
Maybe IBM's krb4 can do this?
Kevin Adams
PacifiCare Behavioral Health
Principal Systems Analyst
AIX Certified Advanced Technical Expert
-----Original Message-----
From: John Jolet [mailto:john.jolet@FXFN.COM]
Sent: Tuesday, May 20, 2003 11:13 AM
To: aix-l@Princeton.EDU
Subject: Re: [aix-l] kerberos question
kinit -l30d. I would advise against it, though. kinda defeats the core
concept of kerberos.
-----Original Message-----
From: Shawn Bierman [mailto:BiermanS@METHODISTHEALTH.ORG]
Sent: Tuesday, May 20, 2003 9:55 AM
To: aix-l@Princeton.EDU
Subject: kerberos question
kerberos 4, AIX 5.1ML3 and PSSP 3.4.
My question is why do I often have to run 'kinit' on the SP nodes to
retrieve a ticket? Is there a way I could make the tickets last longer,
like a month? It seems I have to do this frequently.
# klist
Ticket file: /tmp/tkt0
klist: 2504-076 Kerberos V4 ticket file was not found
This electronic message transmission, including any attachments, contains information from PacifiCare Health Systems Inc. which may be confidential or privileged. The information is intended to be for the use of the individual or entity named above. If you are not the intended recipient, be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited.
If you have received this electronic transmission in error, please notify the sender immediately by a "reply to sender only" message and destroy all electronic and hard copies of the communication, including attachments.
This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 22:16:50 EDT