some errors with using Kerberos authentication in PSQL

--0016e6d97620a3330d04797c01c5
Content-Type: text/plain; charset=ISO-8859-1

Hi,

I try to setup kerberos authentication in Postgresql 8.1.18 on centos.

But I have some problem.

1) The configuration of krb5.conf is:
[realms]
EXAMPLE.COM <http://example.com/><http://EXAMPLE.COM <http://example.com/>
>
> > ={
>
> kdc=star :88
> admin_server=star:749
> default_domain= example.com<http://example.com>
> }
> .....
>
> 2) Then, I created principal as " postgres/star [at] EXAMPLE.COM<mailto:
> star [at] EXAMPLE.COM> " and its password is saved in
> '/usr/local/pgsql/data/postgresql.keytab' .
>
>
> (star is localhost IP, but in hosts.conf I configure like: 213.233.169.93
> star)
>
> 3) I setup postgresql.conf as below:
>
> krb_server_keyfile = '/usr/local/pgsql/data/
> postgresql.keytab'
> krb_srvname = 'postgres/star [at] EXAMPLE.COM<mailto:star [at] EXAMPLE.COM>'
>
> krb_server_hostname = 'star' # empty string matches any keytab
> entry
> krb_caseins_users = off
>
> 4) I create user "frank" in Psql .
>
> 5) Then I set up hba.conf :
>
> host all all 0.0.0.0/0<http://0.0.0.0/0>
> krb5
> host all all 127.0.0.1/32<http://127.0.0.1/32>
> krb5
>
>
> When I want to connect to Postgresql, it gives error.
>
> # kinit frank
>
> [root [at] star bin]# ./psql -h star -U frank -d test
>
> psql: krb5_sendauth: Bad application version was sent (via sendauth)
>
> I should mention that both postgresql server and krb-server are in same
> system and my IP is acquring from dhcp server of university. Where is
> wrong.
>
> Please help me. I serverly need it.
>


--
With Best Regards
Miss.KHodadadi

--0016e6d97620a3330d04797c01c5
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

Hi,<br>
<br>
I try to setup kerberos authentication in Postgresql 8.1.18 on centos.<br>
<br>
But I have some problem.<br>
<br>
1) The configuration of =A0krb5.conf is:<br>
=A0[realms]<br>
=A0 <a href=3D"http://example.com/" target=3D"_blank">EXAMPLE.COM</a><<=
a href=3D"http://example.com/" target=3D"_blank">http://EXAMPLE.COM</a><blo=
ckquote class=3D"gmail_quote" style=3D"border-left: 1px solid rgb(204, 204,=
204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
> =3D{<div class=3D"im"><br>
=A0 =A0 kdc=3Dstar :88<br>
=A0 =A0 admin_server=3Dstar:749<br></div>
=A0 =A0 default_domain=3D <a href=3D"http://example.com/" target=3D"_blank=
">example.com</a><<a href=3D"http://example.com/" target=3D"_blank">http=
://example.com</a>><br>
}<br>
......<br>
<br>
2) Then, I created principal as " =A0postgres/<a href=3D"mailto:star [at] E=
XAMPLE.COM" target=3D"_blank">star [at] EXAMPLE.COM</a><mailto:<a href=3D"mai=
lto:star [at] EXAMPLE.COM" target=3D"_blank">star [at] EXAMPLE.COM</a>> " and=
its password is saved in '/usr/local/pgsql/data/postgresql.keytab'=
.<div class=3D"im">
<br>
<br>
(star is localhost IP, but in hosts.conf I configure like: 213.233.169.93 =
=A0 star)<br>
<br>
3) I setup postgresql.conf as below:<br>
<br>
krb_server_keyfile =3D '/usr/local/pgsql/data/<br>
postgresql.keytab'<br></div>
krb_srvname =3D 'postgres/<a href=3D"mailto:star [at] EXAMPLE.COM" target=3D=
"_blank">star [at] EXAMPLE.COM</a><mailto:<a href=3D"mailto:star [at] EXAMPLE.COM"=
target=3D"_blank">star [at] EXAMPLE.COM</a>>'<div class=3D"im"><br>
krb_server_hostname =3D 'star' =A0 =A0 =A0 =A0 # empty string match=
es any keytab entry<br>
krb_caseins_users =3D off<br>
<br>
4) I create user "frank" =A0in Psql .<br>
<br>
5) Then I set up hba.conf :<br>
<br></div>
host =A0 =A0all =A0 =A0 =A0 =A0 all =A0 =A0 =A0 =A0 <a href=3D"http://0.0.0=
..0/0" target=3D"_blank">0.0.0.0/0</a><<a href=3D"http://0.0.0.0/0" targe=
t=3D"_blank">http://0.0.0.0/0</a>> =A0 =A0 =A0 =A0 =A0 =A0 =A0krb5<br>
host =A0 =A0all =A0 =A0 =A0 =A0 all =A0 =A0 =A0 =A0 <a href=3D"http://127.0=
..0.1/32" target=3D"_blank">127.0.0.1/32</a><<a href=3D"http://127.0.0.1/=
32" target=3D"_blank">http://127.0.0.1/32</a>> =A0 =A0 =A0 =A0 =A0 krb5<=
div class=3D"im"><br>
<br>
When I want to connect to Postgresql, it gives error.<br>
<br>
# kinit frank<br>
<br>
[root [at] star bin]# ./psql -h star =A0-U frank =A0-d test<br>
<br>
psql: krb5_sendauth: Bad application version was sent (via sendauth)<br>
<br>
I should mention that =A0both postgresql server and krb-server are in
same system and my IP is acquring from dhcp server =A0of university.
=A0Where is wrong.<br>
<br>
Please help me. I serverly need it.</div></blockquote><br clear=3D"all"><br=
>-- <br>With Best Regards<br>Miss.KHodadadi<br>

--0016e6d97620a3330d04797c01c5--