Hi,
I am amidst installing an MIT Kerberos server right now and I got stuck on the initialization of the realm.
Whenever I issue the krb5_util create command I end up getting a segmentation fault, the principals don’t get created and the server is still pretty much useless.
linux-z0kg:/var/lib/kerberos/krb5kdc # kdb5_util create -r METROPOLIA.LAN -s
Loading random data
Initializing database '/var/lib/kerberos/krb5kdc/principal' for realm 'METROPOLIA.LAN',
master key name 'K/M@METROPOLIA.LAN'
You will be prompted for the database Master Password.
It is important that you NOT FORGET this password.
Enter KDC database master key:
Re-enter KDC database master key to verify:
Segmentation fault
Whenever I try to start the kadmind or krb5kdc services I get the following error:
Error. Default principal database does not
If anyone has an idea how to solve this please share.
Thanks in advance,
I figured it would be a good idea to upload the configuration files in case it has anything to do with them.
krb5.conf
[libdefaults]
default_realm = METROPOLIA.LAN
[realms]
METROPOLIA.LAN = {
kdc = krb
admin_server = krb
default_domain = metropolia.lan
}
[domain_realm]
.metropolia.lan = METROPOLIA.LAN
metropolia.lan = METROPOLIA.LAN
[logging]
kdc = FILE:/var/log/krb5/krb5kdc.log
admin_server = FILE:/var/log/krb5/kadmind.log
default = FILE:/var/log/krb5/krb5lib.log
kdc.conf
[kdcdefaults]
kdc_ports = 750,88
[realms]
METROPOLIA.LAN = {
database_name = /var/lib/kerberos/krb5kdc/principal
admin_keytab = FILE:/var/lib/kerberos/krb5kdc/kadm5.keytab
acl_file = /var/lib/kerberos/krb5kdc/kadm5.acl
dict_file = /var/lib/kerberos/krb5kdc/kadm5.dict
key_stash_file = /var/lib/kerberos/krb5kdc/.k5.EXAMPLE
kdc_ports = 750,88
max_life = 10h 0m 0s
max_renewable_life = 7d 0h 0m 0s
}
[logging]
kdc = FILE:/var/log/krb5/krb5kdc.log
admin_server = FILE:/var/log/krb5/kadmind.log
kadm5.acl
*/admin@METROPOLIA.LAN *
uname({sys="Linux", node="linux-z0kg", ...}) = 0
socket(PF_FILE, 0x80002 /* SOCK_??? */, 0) = 3
connect(3, {sa_family=AF_FILE, path="/dev/log"}, 110) = 0
time(NULL) = 1271436427
stat64("/var/lib/kerberos/krb5kdc/kdc.conf", {st_mode=S_IFREG|0600, st_size=694, ...}) = 0
open("/var/lib/kerberos/krb5kdc/kdc.conf", O_RDONLY) = 4
fcntl64(4, F_SETFD, FD_CLOEXEC) = 0
fstat64(4, {st_mode=S_IFREG|0600, st_size=694, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0xb77aa000
read(4, "[kdcdefaults]
kdc_ports = 750,8"..., 4096) = 694
read(4, "", 4096) = 0
close(4) = 0
munmap(0xb77aa000, 4096) = 0
access("/etc/krb5.conf", R_OK) = 0
time(NULL) = 1271436427
time(NULL) = 1271436427
stat64("/usr/local/etc/krb5.conf", 0xbfd31510) = -1 ENOENT (No such file or directory)
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
time(NULL) = 1271436427
write(2, "krb5kdc: option requires an argu"..., 44krb5kdc: option requires an argument -- 's'
) = 44
write(2, "usage: krb5kdc -x db_args]* -d"..., 287usage: krb5kdc -x db_args]* -d dbpathname] -r dbrealmname]
-R replaycachename] -m] -k masterenctype] -M masterkeyname]
-p port] -n]
where,
-x db_args]* - Any number of database specific arguments. Look at
each database module documentation for supported
arguments
) = 287
exit_group(1) = ?