From: Gerggee George (rtgg@mailbox.hu)
Date: Mon Jul 15 2002 - 06:23:39 EDT
Original question:
My problem is that I can't make LDAP authentication between Tru64 5.1B
and W2k Advanced Server.
Softwares installed(both on UNIX and W2K side).
es45:/$ /usr/sbin/w2ksetup
Enter the name of the Windows 2000 domain. This is
in the form: domain.compaq.com - Typically the Windows
2000 domain is the same as the DNS domain.
Domain: [BUDAPEST.MKB.HU] mittu.local
Enter the hostname of a Windows 2000 domain controller.
Domain Controller: w2ktest
Setup has detected the presence of a /etc/ldapcd.conf
file. Setup will replace this file.
Continue with setup? [y/n]? y
Saving old /etc/ldapcd.conf in /etc/ldapcd.conf-preSSO
To create the machine account, you must be logged in as root
and have admin kerberos credentials. For security reasons
Windows 2000 does not allow anyone to authenticate through kerberos
using the Administrator account. Therefore you must choose an
account other than the Administrator account that has admin
privileges. The username of an account must be in the Windows
2000 KDC.
Enter Admin principal: u051841
Password for u051841@MITTU.LOCAL:
ldap_gssapi_bind: Operations error
Setup did not complete. Please check your configuration notes.
Then, please rerun /usr/sbin/w2ksetup
Solution:
Just put the host name to /etc/hosts file, because SSO won't read the
DNS entries.
Thanks for HP Hungary!!!
--------------------------------------------------
http://www.mailbox.hu - Mert levelezni kell...
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:48:46 EDT