From owner-freebsd-questions@FreeBSD.ORG Sun May 21 18:25:48 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 995A916A92D for ; Sun, 21 May 2006 18:25:48 +0000 (UTC) (envelope-from nagios@todoo.biz) Received: from newmail.rmm.fr (newmail.rmm.fr [195.115.46.198]) by mx1.FreeBSD.org (Postfix) with ESMTP id 01DD643D6B for ; Sun, 21 May 2006 18:25:47 +0000 (GMT) (envelope-from nagios@todoo.biz) Received: from localhost (localhost [127.0.0.1]) by newmail.rmm.fr (Postfix) with ESMTP id 577CD288E2 for ; Sun, 21 May 2006 20:25:44 +0200 (CEST) X-Virus-Scanned: amavisd-new 2.4.1 (20060508) at rmm.fr Received: from newmail.rmm.fr ([127.0.0.1]) by localhost (newmail.rmm.fr [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y10SBZ1aEXqv for ; Sun, 21 May 2006 20:25:44 +0200 (CEST) Received: from [172.16.1.201] (me.todoo.biz [82.66.93.242]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by newmail.rmm.fr (Postfix) with ESMTP id 13FA0288E1 for ; Sun, 21 May 2006 20:25:43 +0200 (CEST) Mime-Version: 1.0 (Apple Message framework v750) Content-Transfer-Encoding: quoted-printable Message-Id: <9B588D22-F3DA-46FF-8E80-D38F97AD41CC@todoo.biz> Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed To: Liste FreeBSD From: nagios Date: Sun, 21 May 2006 20:25:36 +0200 X-Mailer: Apple Mail (2.750) Subject: Kerberos init problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 21 May 2006 18:25:59 -0000 Hello, I am using a freeBSD 5.4. and am trying to authenticate using =20 "pam_krb5.so" against an OS X server REALM. I have couple of problems that seems a bit tough to handle for a =20 "novice" of kerberos as I am. For the picture here is my config : ----------------------------------- - A KDC server located in my private Lan (internal zone). - A client located on the DMZ (external zone). - A DNS server configured using zones (external - internal). Now my problem : ---------------- I have a POP server located on the DMZ that can't resolv the =20 "default_realm" name of the KDC server (because they are located on =20 different view. So basicly I can't reach the server and authenticate ?? What do you think will be the solution ? Thanks for your support. ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF Gregober ---> PGP ID --> 0x1BA3C2FD bsd @at@ todoo.biz ________________________________________________ =AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?= =BB=A7=AB?=BB=A5=AB?=BB=A7=AB?=BB=A5=AB?=BB=A7 =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF= =AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF=AF