[netatalk-admins] Solaris, AFS and afpd...

Subject: [netatalk-admins] Solaris, AFS and afpd...
From: Everette Gray Allen (Everette_Allen@ncsu.edu)
Date: Wed May 06 1998 - 10:18:01 EDT

• Next message: Jan Dockx: "Re: [netatalk-admins] Icon^M"
• Previous message: Edan Idzerda: "Re: [netatalk-admins] Appleshare IP"
• Next in thread: Jarrod Stenberg: "[netatalk-admins] Re: Fax serving with Netatalk"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So I am not sure where my problem is. I setup 1.4b2 (971027, no patches)
to compile and run with kerberos and AFS support. I configure netatalk to
install in /netatalk and run afpd as
/netatalk/etc/afpd -G -C (no cleartext or guest login). I then set up my
/etc/srvtab to have afpserver.<nbpname>@REALM entry with a known password.
Further I make an identical entry in the afs kas database with the same
format and password. Nothing new here all is documented in the
src/INSTALL/README.AFS and README.SOLARIS. I have confirmed that the
nbpname used in the /etc/srvtab is the name the server advertises by
default (ie same as using -n <nbpname>).
Now I set up my mac clients with authman and verify that it can
authenticate to my MIT V4 server (even works with kclientman and eudora
4.x) I install the authman UAM and select the server in the chooser. Here
is where things go bad. I always get a message saying "Can't get AFS Token
for " @EOS.NCSU.EDU" Please contact your server administrator" (or
something very close :-). What happens next can take 2 forms a) drop into
debugger ( I have not made a log yet but I will) or b) present the home dir
for the user which is authenticated to AuthMan but as AFS user
system:anyuser.
The one catch to our kerberos/afs environment is that it is hybred MIT V4
and AFS with no users in the kas db. The setup is as per
http://www.contrib.andrew.cmu.edu/~shadow/afs/afs-with-kerberos.html
and the cell name of my test netatalk machine does not match my kerberos
realm (nor will it ever).
So my question is why can't the token be retrieved? If it has to do with
the hybred config has anyone mod'ed netatalk to work and run on solaris
2.x? (I know about the Stanford mods but they do not run on solaris yet).
Thanks in advance.

Everette Gray Allen Consultant IV
Box 7109 NCState Campus Computing Services
Raleigh, NC 27695-7109 919-515-2517

• Next message: Jan Dockx: "Re: [netatalk-admins] Icon^M"
• Previous message: Edan Idzerda: "Re: [netatalk-admins] Appleshare IP"
• Next in thread: Jarrod Stenberg: "[netatalk-admins] Re: Fax serving with Netatalk"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:32:39 EST