how? when i use pam_winbind to login and automount to mount a users home
with kerberos security i dont get a TGT at login. So this doesn't seem
to work with pam_winbind or?=20

-----Original Message-----
From: Gerald (Jerry) Carter [mailto:jerry@samba.org]=20
Sent: 02 April 2008 15:45
To: Oliver Weinmann
Cc: samba@lists.samba.org
Subject: Re: [Samba] Urgent... winbind and keytab file creation

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Oliver Weinmann wrote:
> Hi and thanks for you answer.
>=20
> here is the output about the encryption used:
>=20
> [root@rhel4wbtest2 krb5]# klist -e -k
> Keytab name: FILE:/etc/krb5/krb5.keytab KVNO Principal


Enctypes look fine.

> i have to use pam_krb5 because i need to mount nfs shares with=20
> kerberos security. So when a user logs in he gets a valid TGT and is=20
> able to mount the share.


pam_winbind will do that for you as well.

> if the keytab created cannot be used for this... can i somehow delete=20
> the host principal created by winbind, create a new one, that will=20
> work for pam_krb5 and let winbind use the newly created one?





jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFH843HIR7qMdg1EfYRAmDhAKC9ZLpFfsiBRZGqOS1uJD dke7r4qwCePF6D
mYwG/R3TyRnd9DHFhhFLUpE=3D
=3DIu9j
-----END PGP SIGNATURE-----

__________________________________________________ ____________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
__________________________________________________ ____________________
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba