[Users] ovirt kerberos/ldap
Yair Zaslavsky
yzaslavs at redhat.com
Thu Feb 21 09:48:06 UTC 2013
Please provide info also on the IPA server you are using (use rpm -qa for that)
----- Original Message -----
> From: "Yaniv Kaul" <ykaul at redhat.com>
> To: "Eduardo Ramos" <eduardo at freedominterface.org>
> Cc: users at ovirt.org
> Sent: Thursday, February 21, 2013 11:14:41 AM
> Subject: Re: [Users] ovirt kerberos/ldap
>
> ----- Original Message -----
> > Hi all!
> >
> > I'm trying to link a ldap/kerberos to my ovirt without success. I'm
> > stuck with this:
> >
> > oVirt engine:
> >
> > # engine-manage-domains -action=add -domain=gsr.inpe.br
> > -user=admin/admin -interactive -provider=IPA
> > Enter password:
> >
> > Error: exception message: KDC has no support for encryption type
> > (14) -
> > BAD_ENCRYPTION_TYPE
>
> Please snoop the connection between the engine and the IPA server.
> Port 88, full packets ('-s 1500' on tcpdump), into file ('-w
> /tmp/kerb.pcap' ).
> Y.
>
> > Failure while testing domain gsr.inpe.br. Details: Kerberos error.
> > Please check log for further details.
> >
> > kdc log:
> >
> > Feb 20 18:02:55 ldap krb5kdc[4314]: AS_REQ (1 etypes {23})
> > 150.163.73.78: BAD_ENCRYPTION_TYPE: admin/admin at GSR.INPE.BR for
> > krbtgt/GSR.INPE.BR at GSR.INPE.BR, KDC has no support for encryption
> > type
> >
> > Any sugestion?
> > _______________________________________________
> > Users mailing list
> > Users at ovirt.org
> > http://lists.ovirt.org/mailman/listinfo/users
> >
> _______________________________________________
> Users mailing list
> Users at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/users
>
More information about the Users
mailing list