KSU fails to select the correct cache

Hi,



I setup Kerberos and OpenLDAP successfully. I installed NFS4 and it is
protected by Kerberos. Everything works fine at login, however; it
fails when I ksu. If I login as user2 (1002) and then try to ksu user1 (1001), I get
permission denied when I try to ls my home directory. I tried the
option -Z but it gave me: Permission Denied user1 has no permission to
access /tmp/krb5xxxxxxxx



Here is the log: gssd.rpc -vvvv
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: handling krb5 upcall[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: getting credentials for client[/color][/color]
[color=blue][color=green]
> > with uid 1001 for server nfs-server-machine[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: CC file 'krb5cc_1001.1' being[/color][/color]
[color=blue][color=green]
> > considered[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: CC file 'krb5cc_1002_cfxLz28926'[/color][/color]
[color=blue][color=green]
> > being considered[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: CC file 'krb5cc_machine_REALM'[/color][/color]
[color=blue][color=green]
> > being considered[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: using FILE:/tmp/krb5cc_1001 as[/color][/color]
[color=blue][color=green]
> > credentials cache for client with uid 1001 for server nfs-server-machine[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: using environment variable to[/color][/color]
[color=blue][color=green]
> > select krb5 ccache FILE:/tmp/krb5cc_1001[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: creating context using fsuid 1001[/color][/color]
[color=blue][color=green]
> > (save_uid 0)[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: ERROR: GSS-API: error in[/color][/color]
[color=blue][color=green]
> > gss_acquire_cre d(): Miscellaneous failure - Unknown code krb5 195[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: WARNING: Failed while limiting[/color][/color]
[color=blue][color=green]
> > krb5 encryption types for user with uid 1001[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: WARNING: Failed to create krb5[/color][/color]
[color=blue][color=green]
> > context for user with uid 1001 for server nfs-server-machine[/color][/color]
[color=blue][color=green]
> > Jan 10 10:02:48 machine1 rpc.gssd[19083]: doing error downcall[/color][/color]


Platform:
Debian 4


Any help?



Thank you



Amir

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
[url]http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/[/url]