[Freeipa-users] Trust between IPA and another MIT Kerberos Realm
Matt Bryant
matthew.bryant at melbourneit.com.au
Wed Nov 27 22:29:33 UTC 2013
Simo,
Have added the following into bugzilla ..
Bug 1035494 <https://bugzilla.redhat.com/show_bug.cgi?id=1035494> has
been added to the database
seems strange but whilst listprincs/getprinc works getpols and the
addprinc (at least in this use case) doesnt...
ie
kadmin.local: add_principal -pw XXXXXXX krbtgt/OLD-REALM at IPA-REALM
WARNING: no policy specified for krbtgt/OLD-REALM at IPA-REALM; defaulting
to no policy
add_principal: Invalid argument while creating "krbtgt/OLD-REALM at IPA-REALM".
kadmin.local: listpols
get_policies: Plugin does not support the operation while retrieving list.
rgds
Matt B.
On 11/27/2013 11:05 PM, Simo Sorce wrote:
> On Wed, 2013-11-27 at 15:24 +1000, Matt Bryant wrote:
>> Hmm just upgraded to 3 so thought I woudl give it a go ... but (aint
>> there always one of those :() can't seem to add the principle ..
>>
>> kadmin.local: add_principal krbtgt/OLD-REALM at IPA-REALM
>> WARNING: no policy specified for krbtgt/OLD-REALM at IPA-REALM; defaulting
>> to no policy
>> Enter password for principal "krbtgt/OLD-REALM at IPA-REALM":
>> Re-enter password for principal "krbtgt/OLD-REALM at IPA-REALM":
>> add_principal: Invalid argument while creating "krbtgt/OLD-REALM at IPA-REALM".
>>
>> and nothing was placed in the kadmin log .. :(
> This is almost certainly a bug, can you open a ticket so we can
> investigate ?
>
> Simo.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20131128/52cec2d1/attachment.htm>
More information about the Freeipa-users
mailing list