[Freeipa-users] keytab issue with service principal
Simo Sorce
simo at redhat.com
Tue Jun 30 18:52:17 UTC 2015
On Tue, 2015-06-30 at 18:44 +0000, sipazzo wrote:
> I am trying to troubleshoot kerberos authentication for an oracle service (oracledb) and getting the following error when testing the service keytab on the database server (oracledbsrvr):
> oracle at oracledbsrvr ~]# kinit -kt /opt/oracle/admin/oracledb.keytab -S oracledb/oracledbsrvr.example.com
> kinit: Keytab contains no suitable keys for host/oracledbsrvr.example.com at EXAMPLE.COM while getting initial credentials
>
>
> When I use a client program like sqlplus on the database server connecting as a freeipa user with valid kerberos ticket it appears to work fine though. I cannot get it working from a remote client however. Is this error a red herring or should I be concerned about this? kvno and klist show same number.
What's the output of klist -kt /opt/oracle/admin/oracledb.keytab ?
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-users
mailing list