[Carter]

[quote]’ve got a newly created 10.5.6 server setup as an OD master. DNS is running and Server Admin says Kerberos is running. Now I’m trying to bind my first client to it and it won’t bind.[/quote]

See my original post for all the details.. Thanks.

[Carter]

I’ve got just a single server. So there’s really no use in trying to make it a replica.

[Carter]

[QUOTE][u]Quote by: ntownsend[/u][p]I have the same problem.
10.5.6 OD Master 10.5.6 Server bound as “Connected to a Directory Server” The join Kerberos button prompts me for a dir admin user and password. The slapconfig log on the client spits out:

Contacting the directory server
Creating the service list
Creating the service principals
Creating the keytab file
—
— key tab file stuff
—
Configuring services
WriteSetupFile: setup file path = /temp.5qal/setup

The “Join Kerberose” button does not disappear.[/p][/QUOTE]

That doesn’t sound like my problem at all.

[Carter]

I have the following settings for Open Directory’s binding policies – hope this is what you’re referring to.

-Enable Authenticated Directory Binding – YES
-Require authenticated binding between directory and clients – YES
-Disable clear text passwords – YES
-Digitally sign all packets (requires Kerberos) – YES
-Encrypt all packets (requires SSL or Kerberos) – YES
-Block man-in-the-middle attacks (requires Kerberos) – YES
-Disable client-side caching – NO
-Allow users to edit their own contact information – NO

[Carter]

Thanks for the excellent info. I’ll look this over, try out your suggestion, and let you know how it works.

[Author]

Posts