Displaying 3 results from an estimated 3 matches for "krb5cc_2000".
Did you mean:
krb5cc_1000
2024 Jun 12
1
kerberos default_ccache_name with sssd
...save the cache in /tmp and the other 2 in /home. See what happens when i run the loop below:
> for i in rocky8client rocky9client rocky9server rocky8server; do /usr/bin/sshpass -p password /usr/bin/ssh -l jdoe $i "hostname; klist"; done
rocky8client.domain.net
Ticket cache: FILE:/tmp/krb5cc_2000_WP04h8h0sa
Default principal:?jdoe at DOMAIN.NET
Valid starting Expires Service principal
06/11/2024 17:58:09 06/12/2024 17:58:09?krbtgt/DOMAIN.NET at DOMAIN.NET
?renew until 06/11/2024 17:58:09
rocky9client.domain.net
Ticket cache: FILE:/tmp/krb5cc_2000_XXXXkYi1X5
Default principal:?jdoe at DOMA...
2024 Jun 13
1
kerberos default_ccache_name with sssd
...ens when i run the loop below:
>
> > for i in rocky8client rocky9client rocky9server rocky8server; do /usr/bin/sshpass -p password /usr/bin/ssh -l jdoe $i "hostname; klist"; done
>
> rocky8client.domain.net <http://rocky8client.domain.net>
> Ticket cache: FILE:/tmp/krb5cc_2000_WP04h8h0sa
> Default principal: jdoe at DOMAIN.NET <https://mailto:jdoe at DOMAIN.NET>
>
> Valid starting Expires Service principal
> 06/11/2024 17:58:09 06/12/2024 17:58:09 krbtgt/DOMAIN.NET at DOMAIN.NET <https://mailto:krbtgt/DOMAIN.NET at DOMAIN.NET>
> ?renew until 06...
2024 Jun 11
1
kerberos default_ccache_name with sssd
...cation (/tmp/krb5cc-blabla).*
> SSH is creating a separate ticket cache file for each login session and owned by the user.
> This has been the preferred way to do this for decades.
> https://kerberos.mit.narkive.com/YJB4Hshz/krb5ccname-and-sshd
>
> Your: "Ticket cache: FILE:/tmp/krb5cc_2000_tgiettMBSK" looks like it is set by sshd and your environment should have a KRB5CCNAME with that name.
> If you share the ticket cache between multiple login sessions, when the first session ends,
> the "GSSAPICleanupCredentials yes" will cause the shared ticket cache to be del...