我在 centos 上安装了 freeipa,重新启动服务后似乎失去了“kadmin”的身份验证
[root@pcm-ipa-01 ~]# kadmin init
Authenticating as principal root/[email protected] T with password.
kadmin: Client not found in Kerberos database while initializing kadmin interface
但是我可以直接使用用户“admin”进行身份验证
[root@pcm-ipa-01 ~]# kadmin -p admin
Authenticating as principal admin with password.
Password for [email protected]:
kadmin: list_principals
get_principals: Operation requires ``list'' privilege while retrieving list.
kadmin:
更新:
[root@ipaserver tmp]# ipa user-show admin
ipa: ERROR: did not receive Kerberos credentials
[root@pcm-ipa-01 tmp]# klist
klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0)
你到底需要什么?
您应该使用 IPA CLI 而不是 kadmin。 http://docs.fedoraproject.org/en-US/Fedora/18/html/FreeIPA_Guide/Kerberos_Errors.html