Re: ldap, kerberos and ssh-krb5

To: debian-user@lists.debian.org
Subject: Re: ldap, kerberos and ssh-krb5
From: Mark Roach <mrroach@okmaybe.com>
Date: Mon, 09 May 2005 09:05:21 -0400
Message-id: <[🔎] 427F6011.4050709@okmaybe.com>
In-reply-to: <[🔎] 20050508202658.49917.qmail@web60523.mail.yahoo.com>
References: <[🔎] 20050508202658.49917.qmail@web60523.mail.yahoo.com>

David Parutki wrote:

I have a working installation with account information
in ldap, workstations accessing account information
via libnss-ldap and nscd. Further, a kerberos kdc with
principals matcing users in ldap. All machines have a
krb5.keytab. Home directories are currently served via
nfs from one server to the workstations.

[...]

But with the centralized account handling described
above I'm running out of options. Do I need to modify
the /etc/pam.d/ssh file although I do not want to send
any passwords over the network (even in a
ssh-session)?

The first thing I would try is running both sshd and ssh in debug mode.I usually start sshd like "sshd -Deddd -p 3022" and ssh like "ssh -vvv-p 3022 hostname"

Give that a shot, and it should hopefully explain in a prettystraightforward way what the problem is.


-Mark

Reply to:

References:
- ldap, kerberos and ssh-krb5
  - From: David Parutki <parutki@yahoo.com>

Prev by Date: Re: Question about hard disk partition strategy for debian
Next by Date: Re: Question about hard disk partition strategy for debian
Previous by thread: ldap, kerberos and ssh-krb5
Next by thread: Re: ldap, kerberos and ssh-krb5
Index(es):
- Date
- Thread