集成 RHEL 和 Active Directory
Integrating RHEL and Active Directory
我正在集成 RHEL 6.5 服务器和 Windows Server 2008 R2 (Active Directory) 以进行身份验证。即客户端能够使用 AD 中的用户详细信息登录到 RHEL 服务。
我按照相同的步骤(配置 3)
http://www.redhat.com/en/files/resources/en-rhel-intergrating-rhel-6-active-directory.pdf and https://www.youtube.com/watch?v=LEhz5ZVfYJI&index=16&list=WL
我配置相同,但没有按预期工作。
我收到类似
的错误
debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
Server not found in Kerberos database
debug1: Unspecified GSS failure. Minor code may provide more information
Server not found in Kerberos database
debug1: Unspecified GSS failure. Minor code may provide more information
你能帮我解决这个问题吗?
来自Microsoft TechNet's Troubleshooting Tips:
DNS-related Error Messages
Investigate DNS issues if you are experiencing error messages similar
to those listed as follows:
- Host name cannot be canonicalized.
- Incorrect net address.
- Server not found in Kerberos database.
- Cannot contact KDC for requested realm.
就我而言,问题是我必须使用 Kerberos 要求的 FQDN。不使用 FQDN 让我遇到同样的错误,"Server not found in Kerberos database"。
另外,仔细检查 DNS 是否正确解析以及服务器是否可访问也是个好主意。
我正在集成 RHEL 6.5 服务器和 Windows Server 2008 R2 (Active Directory) 以进行身份验证。即客户端能够使用 AD 中的用户详细信息登录到 RHEL 服务。
我按照相同的步骤(配置 3) http://www.redhat.com/en/files/resources/en-rhel-intergrating-rhel-6-active-directory.pdf and https://www.youtube.com/watch?v=LEhz5ZVfYJI&index=16&list=WL
我配置相同,但没有按预期工作。
我收到类似
的错误debug1: Authentications that can continue: publickey,gssapi-keyex,gssapi-with-mic,password
debug1: Next authentication method: gssapi-keyex
debug1: No valid Key exchange context
debug1: Next authentication method: gssapi-with-mic
debug1: Unspecified GSS failure. Minor code may provide more information
Server not found in Kerberos database
debug1: Unspecified GSS failure. Minor code may provide more information
Server not found in Kerberos database
debug1: Unspecified GSS failure. Minor code may provide more information
你能帮我解决这个问题吗?
来自Microsoft TechNet's Troubleshooting Tips:
DNS-related Error Messages
Investigate DNS issues if you are experiencing error messages similar to those listed as follows:
- Host name cannot be canonicalized.
- Incorrect net address.
- Server not found in Kerberos database.
- Cannot contact KDC for requested realm.
就我而言,问题是我必须使用 Kerberos 要求的 FQDN。不使用 FQDN 让我遇到同样的错误,"Server not found in Kerberos database"。
另外,仔细检查 DNS 是否正确解析以及服务器是否可访问也是个好主意。