[Bug 913166] Re: kprop will not find slave-kdc

Wed Jan 11 17:13:04 UTC 2012

I changed the hostname in /etc/hostname from "kerberos" to
"kerberos.example.net" now it's working. BUT I have the same
configuration running on two Debian6 and on two SLES11 machines with
just the hostname "kerberos" in the "/etc/hostname" and it's working.
Only the ubuntu pre 12.04 with the krb5-dc-1.10 package has this
problem. So if it's not a bug, then maybe there are some changes ;-)

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to krb5 in Ubuntu.
https://bugs.launchpad.net/bugs/913166

Title:
  kprop will not find slave-kdc

Status in “krb5” package in Ubuntu:
  New

Bug description:

  System:
  lsb_release -rd
  Description:    Ubuntu precise (development branch)
  Release:        12.04

  Pakage:
  apt-cache policy krb5-kdc
  krb5-kdc:
    Installiert: 1.10+dfsg~alpha2-1
    Kandidat:    1.10+dfsg~alpha2-1
    Versionstabelle:
   *** 1.10+dfsg~alpha2-1 0
          500 http://de.archive.ubuntu.com/ubuntu/ precise/universe amd64 Packages
          100 /var/lib/dpkg/status

  I confgured the KDC-master for replication. then configured the slave. Then I startet propagaition with: 
  ------------------------
  kprop -f /root/slave-repl -r EXAMPLE.NET  kerb-repl.example.net
  -------------------------

  And I got the error-message 
  -------------------------
  kprop: Client not found in Kerberos database while getting initial ticket
  ----------------------

  The Client is part of the Database, as you can see :
  -----------------
  kadmin:  listprincs 
  K/M at EXAMPLE.NET
  daniel at EXAMPLE.NET
  host/kerb-repl.example.net at EXAMPLE.NET
  host/kerberos.example.net at EXAMPLE.NET
  kadmin/admin at EXAMPLE.NET
  kadmin/changepw at EXAMPLE.NET
  kadmin/kerberos at EXAMPLE.NET
  krbtgt/EXAMPLE.NET at EXAMPLE.NET
  root/admin at EXAMPLE.NET
  -----------------

  Here the errormessage from the logfile:
  -----------------
  Jan 07 17:19:20 kerberos krb5kdc[2029](info): AS_REQ (4 etypes {18 17 16 23}) 192.168.123.110: CLIENT_NOT_FOUND: host/kerberos at EXAMPLE.NET for host/kerb-repl.example.net at EXAMPLE.NET, Client not found in Kerberos database
  -----------------

  The krb5.keytab is created and copied to the slave. Starting "kprop" tcpdump shows now networktraffic at all. 
  DNS is working. Login as user with a principal is working. Also the login with any user from the KDC-Master Database on any Client ( including the KDC-slave) is possible.

  The same configuration works with krb5-kdc Version 1.8.3

  ProblemType: Bug
  DistroRelease: Ubuntu 12.04
  Package: krb5-kdc 1.10+dfsg~alpha2-1
  ProcVersionSignature: Ubuntu 3.2.0-8.14-generic 3.2.0
  Uname: Linux 3.2.0-8-generic x86_64
  ApportVersion: 1.90-0ubuntu1
  Architecture: amd64
  Date: Sat Jan  7 17:07:01 2012
  InstallationMedia: Ubuntu-Server 12.04 LTS "Precise Pangolin" - Alpha amd64 (20111129)
  ProcEnviron:
   PATH=(custom, no user)
   LANG=de_DE.UTF-8
   SHELL=/bin/bash
  SourcePackage: krb5
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/913166/+subscriptions