0

我在 Raspberry Pi 2 上设置了广告 MIT Kerberos5 kdc。

作为这类事情的菜鸟,我在网上花了相当多的时间,阅读各种文档、博客、帖子、论坛条目,这真的很有帮助。

目前我正在尝试让 kadmind 启动并运行,不幸的是我正在努力解决这个问题。在相应的日志文件中,它正在读取类似

May 19 18:12:00 MyKdc-01 kadmind[3412](info): No dictionary file specified, continuing without one.
May 19 18:12:00 MyKdc-01 kadmind[3412](info): setting up network...
May 19 18:12:00 MyKdc-01 kadmind[3412](info): setsockopt(9,IPV6_V6ONLY,1) worked
May 19 18:12:00 MyKdc-01 kadmind[3412](info): setsockopt(11,IPV6_V6ONLY,1) worked
May 19 18:12:00 MyKdc-01 kadmind[3412](Error): Address already in use - Cannot bind server socket on 0.0.0.0.749
May 19 18:12:00 MyKdc-01 kadmind[3412](Error): Failed setting up a RPC socket (for 0.0.0.0.749)
May 19 18:12:00 MyKdc-01 kadmind[3412](Error): Address already in use - Error setting up network

我的 /etc/krb5.conf

[libdefaults]
    default_realm = MYDOM.LOCAL

    kdc_timesync = 1
    ccache_type = 4
    forwardable = true
    proxiable = true

    fcc-mit-ticketflags = true

[realms]
    MYDOM.LOCAL = {
        kdc = mykdc-01.mydom.local:88
        admin_server = mykdc-01.mydom.local:749
        default_domain = mydom.local
    }
[domain_realm]
    .local = MYDOM.LOCAL

和我的 /etc/krb5kdc/kdc.conf

[kdcdefaults]
    kdc_listen = 88
    kdc_tcp_listen = 88

[realms]
    MYDOM.LOCAL = {
    kadmind_port = 749
    max_life = 10h 0m 0s
    max_renewable_life = 7d 0h 0m 0s
    master_key_type = des3-hmac-sha1
    default_principal_flags = +preauth
    database_name = /var/lib/krb5kdc/principal
    admin_keytab = FILE:/etc/krb5kdc/kadm5.keytab
    acl_file = /etc/krb5kdc/kadm5.acl
    key_stash_file = /etc/krb5kdc/stash
}

[logging]
    kdc = FILE:/var/log/krb5/krb5kdc.log
    admin_server = FILE:/var/log/krb5/kadmin.log
    default = FILE:/var/log/krb5/krb5lib.log

任何关于如何解决这个问题的提示都将不胜感激。:)

C。

4

0 回答 0