在CentOS 6上配置Kerberos时出错

时间:2017-01-12 12:24:03

标签: security hadoop kerberos centos6

在CentOS 6上运行的私有服务器上配置Kerberos后,运行kinit时出现此错误,我得到以下响应:

  

kinit:获取初始凭据时,领域不是KDC的本地

这是我的配置文件的副本:

[logging]
 default = FILE:/var/log/krb5libs.log
 kdc = FILE:/var/log/krb5kdc.log
 admin_server = FILE:/var/log/kadmind.log

[libdefaults]
 dns_lookup_realm = true
 dns_lookup_kdc = true
 ticket_lifetime = 24h
 renew_lifetime = 7d
 forwardable = true
# rdns = false
 default_realm = CENTSERVER01
# default_ccache_name = KEYSTRING:persistent:%{uid}

[realms]
 CENTSERVER01 = {
  kdc = centserver01:88
  admin_server = centserver01:88
 }

[domain_realm]
 .centserver01 = CENTSERVER01
 centserver01 = CENTSERVER01

1 个答案:

答案 0 :(得分:0)

此错误通常意味着您的Kerberos配置文件(默认情况下为/etc/krb5.conf)配置错误。你需要解决这个问题,以解决问题。这些错误通常通过对该文件的简单目视检查来捕获。根据{{​​3}}编辑文件;只需将example.com名称替换为您的实际Kerberos领域名称和DNS名称,并始终记录区分大小写。