I guess this is related. Still following the same article, when i 'addprinc -policy user domovoy' it says 'WARNING: policy "user" does not exist' and kadmin.log prints 'kadm5_get_policy, user, Read-only file system'.
Thing is, it doesn't say which file/directory is concerned. # kadmin.local Authenticating as principal root/ad...@errlock.dev with password. kadmin.local: listpols admin host service user # kadmin -p domovoy/admin Authenticating as principal domovoy/admin with password. Password for domovoy/ad...@errlock.dev: kadmin: listpols get_policies: Unknown code adb 13 while retrieving list. There i get 'Request: kadm5_get_policies, *, Insufficient permission to lock file, client=domovoy/ad...@errlock.dev, service=kadmin/master.errlock....@errlock.dev' in kadmin.log # cat /etc/krb5kdc/kadm5.acl */admin *
pgpQWJEZznJce.pgp
Description: OpenPGP digital signature
