On Thu, 2013-09-12 at 09:09 -0400, Simo Sorce wrote:
> Yes it is, but I need to see also what you get on the successfull ssh > case, klist is all I need to see, no other output. > > Also does it work all the time if you use the command > > ssh -K dean@desktop2 ? [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/[email protected] [dean@ipa2 ~]$ ssh dean@desktop2 Last login: Wed Sep 11 21:14:18 2013 from ipa2.hunter.org Could not chdir to home directory /home/net/dean: Permission denied -bash: /home/net/dean/.bash_profile: Permission denied -bash-4.2$ klist klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_1440800001) -bash-4.2$ logout -bash: /home/net/dean/.bash_logout: Permission denied Connection to desktop2 closed. [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/[email protected] 09/12/13 11:15:29 09/13/13 11:14:40 host/[email protected] [dean@ipa2 ~]$ su - Password: [root@ipa2 ~]# klist klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_0) [root@ipa2 ~]# ssh dean@desktop2 dean@desktop2's password: Last login: Thu Sep 12 11:16:15 2013 from ipa2.hunter.org [dean@desktop2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktrhI7WX Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:17:40 09/13/13 11:17:39 krbtgt/[email protected] 09/12/13 11:17:40 09/13/13 11:17:39 nfs/[email protected] [dean@desktop2 ~]$ logout Connection to desktop2 closed. [root@ipa2 ~]# logout [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/[email protected] 09/12/13 11:15:29 09/13/13 11:14:40 host/[email protected] [dean@ipa2 ~]$ ssh dean@desktop2 Last login: Thu Sep 12 11:17:39 2013 from ipa2.hunter.org [dean@desktop2 ~]$ klist klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_1440800001) [dean@desktop2 ~]$ logout Connection to desktop2 closed. [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktH9faWP Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:14:40 09/13/13 11:14:40 krbtgt/[email protected] 09/12/13 11:15:29 09/13/13 11:14:40 host/[email protected] reboot .... [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:23:56 09/13/13 11:23:56 krbtgt/[email protected] [dean@ipa2 ~]$ ssh -k dean@desktop2 Last login: Thu Sep 12 11:22:31 2013 from ipa2.hunter.org Could not chdir to home directory /home/net/dean: Permission denied -bash: /home/net/dean/.bash_profile: Permission denied -bash-4.2$ klist klist: No credentials cache found (ticket cache FILE:/tmp/krb5cc_1440800001) -bash-4.2$ logout -bash: /home/net/dean/.bash_logout: Permission denied Connection to desktop2 closed. [dean@ipa2 ~]$ klist Ticket cache: DIR::/run/user/1440800001/krb5cc/tktLOSJxT Default principal: [email protected] Valid starting Expires Service principal 09/12/13 11:23:56 09/13/13 11:23:56 krbtgt/[email protected] 09/12/13 11:24:43 09/13/13 11:23:56 host/[email protected]
_______________________________________________ Freeipa-users mailing list [email protected] https://www.redhat.com/mailman/listinfo/freeipa-users
