[Freeipa-users] Freeipa -ssh keys
Alexander Bokovoy
abokovoy at redhat.com
Fri Apr 26 10:44:32 UTC 2013
On Fri, 26 Apr 2013, naresh reddy wrote:
>Hi Alex
>
>I had tried tshoot and so i have changed GSSAPIAuthentication to no
>because i was getting
>debug1: Unspecified GSS failure. Minor code may provide more information
>Ticket expired
^^^ Ticket expired means your ticket on the machine from which you are
trying to connect to ssh server.
You need to maintain actual credentials:
[client]$ kinit np at eng.switchlab.net
Password: <...>
[client]$ ssh -K -l np at eng.switchlab.net ldap1.eng.switchlab.net
You can read basics about Kerberos here:
http://www.kerberos.org/software/tutorial.html
--
/ Alexander Bokovoy
More information about the Freeipa-users
mailing list