[Freeipa-users] IPA documentation comment - failure in setting up a NFS server

Steven Jones Steven.Jones at vuw.ac.nz
Wed Feb 15 23:27:13 UTC 2012 

Hi,

I am trying to setup NFS,

I am getting this failure, also the document says nothing about having to do a kinit to get a valid Credential cache, so that needs to be added...


============
[root at vuwuniconfsipa3 etc]# ipa-getkeytab -s vuwuniconfsipa3.unix.vuw.ac.nz -p nfs/vuwuniconfsipa3.unix.vuw.ac.nz -k /etc/krb5.keytab
Kerberos User Principal not found. Do you have a valid Credential Cache?
[root at vuwuniconfsipa3 etc]# kinit admin
Password for admin at UNIX.VUW.AC.NZ: 
[root at vuwuniconfsipa3 etc]# ipa-getkeytab -s vuwuniconfsipa3.unix.vuw.ac.nz -p nfs/vuwuniconfsipa3.unix.vuw.ac.nz -k /etc/krb5.keytab
SASL Bind failed!
[root at vuwuniconfsipa3 etc]# 
============



regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: freeipa-users-bounces at redhat.com [freeipa-users-bounces at redhat.com] on behalf of Steven Jones [Steven.Jones at vuw.ac.nz]
Sent: Thursday, 16 February 2012 12:11 p.m.
Cc: freeipa-users at redhat.com
Subject: [Freeipa-users] IPA documentation comment

Hi,

Sort of minor but I find the following a bit inconsistent,

I am looking at section 9.3.1, item no 3

I think it should say,

3. Generate the nfs service keytab, there are two methods,

i) On the NFS server, with this command "etc etc"

ii) On a different machine do a)....b)...c)...d)

for your b) You say "Copy over to the NFS host machine" where earlier you said NFS server, you repeat this in d)   for consistency it should be "server" it certainly slows my understanding down when I see such things being mixed up....

I also see under 6.5.1 point 6 that there is a ipa-getkeytab command but as per NFS is that run on the server that is providing the service? or on the IPA server, I find it unclear.......thinking about it its on the target server offering the service I think you are saying, but by then Ive lost my train of thought....

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

_______________________________________________
Freeipa-users mailing list
Freeipa-users at redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

More information about the Freeipa-users mailing list