[Freeipa-users] Permission Denied
Dean Hunter
deanhunter at comcast.net
Thu Sep 12 16:27:40 UTC 2013
On Thu, 2013-09-12 at 09:09 -0400, Simo Sorce wrote:
> Yes it is, but I need to see also what you get on the successfull ssh
> case, klist is all I need to see, no other output.
>
> Also does it work all the time if you use the command
>
> ssh -K dean at desktop2 ?
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/HUNTER.ORG at HUNTER.ORG
[dean at ipa2 ~]$ ssh dean at desktop2
Last login: Wed Sep 11 21:14:18 2013 from ipa2.hunter.org
Could not chdir to home directory /home/net/dean: Permission denied
-bash: /home/net/dean/.bash_profile: Permission denied
-bash-4.2$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)
-bash-4.2$ logout
-bash: /home/net/dean/.bash_logout: Permission denied
Connection to desktop2 closed.
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/HUNTER.ORG at HUNTER.ORG
09/12/13 11:15:29 09/13/13 11:14:40
host/desktop2.hunter.org at HUNTER.ORG
[dean at ipa2 ~]$ su -
Password:
[root at ipa2 ~]# klist
klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0)
[root at ipa2 ~]# ssh dean at desktop2
dean at desktop2's password:
Last login: Thu Sep 12 11:16:15 2013 from ipa2.hunter.org
[dean at desktop2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktrhI7WX
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:17:40 09/13/13 11:17:39 krbtgt/HUNTER.ORG at HUNTER.ORG
09/12/13 11:17:40 09/13/13 11:17:39 nfs/ipa2.hunter.org at HUNTER.ORG
[dean at desktop2 ~]$ logout
Connection to desktop2 closed.
[root at ipa2 ~]# logout
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/HUNTER.ORG at HUNTER.ORG
09/12/13 11:15:29 09/13/13 11:14:40
host/desktop2.hunter.org at HUNTER.ORG
[dean at ipa2 ~]$ ssh dean at desktop2
Last login: Thu Sep 12 11:17:39 2013 from ipa2.hunter.org
[dean at desktop2 ~]$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)
[dean at desktop2 ~]$ logout
Connection to desktop2 closed.
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/HUNTER.ORG at HUNTER.ORG
09/12/13 11:15:29 09/13/13 11:14:40
host/desktop2.hunter.org at HUNTER.ORG
reboot ....
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:23:56 09/13/13 11:23:56 krbtgt/HUNTER.ORG at HUNTER.ORG
[dean at ipa2 ~]$ ssh -k dean at desktop2
Last login: Thu Sep 12 11:22:31 2013 from ipa2.hunter.org
Could not chdir to home directory /home/net/dean: Permission denied
-bash: /home/net/dean/.bash_profile: Permission denied
-bash-4.2$ klist
klist: No credentials cache found (ticket cache
FILE:/tmp/krb5cc_1440800001)
-bash-4.2$ logout
-bash: /home/net/dean/.bash_logout: Permission denied
Connection to desktop2 closed.
[dean at ipa2 ~]$ klist
Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT
Default principal: dean at HUNTER.ORG
Valid starting Expires Service principal
09/12/13 11:23:56 09/13/13 11:23:56 krbtgt/HUNTER.ORG at HUNTER.ORG
09/12/13 11:24:43 09/13/13 11:23:56
host/desktop2.hunter.org at HUNTER.ORG
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130912/79d96a76/attachment.htm>
More information about the Freeipa-users
mailing list