User Tools

Site Tools


сервис_openfire

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision Both sides next revision
сервис_openfire [2022/10/04 16:31]
val [Использование LDAP каталога]
сервис_openfire [2022/10/05 10:56]
val [MIT (пока не удалось)]
Line 247: Line 247:
 kadmin.local: ​ ktadd -k gatexmpp.keytab xmpp/​gate.CORPX.UN kadmin.local: ​ ktadd -k gatexmpp.keytab xmpp/​gate.CORPX.UN
  
-kadmin.local: ​ addprinc -randkey xmpp/​corpX.un +### kadmin.local: ​ addprinc -randkey xmpp/​corpX.un 
-kadmin.local: ​ addprinc -e rc4-hmac:​normal -randkey xmpp/​CORPX.UN+### kadmin.local: ​ addprinc -e rc4-hmac:​normal -randkey xmpp/​CORPX.UN
  
-kadmin.local: ​ ktadd -k xmpp.keytab xmpp/​corpX.un +### kadmin.local: ​ ktadd -k xmpp.keytab xmpp/​corpX.un 
-kadmin.local: ​ ktadd -k xmpp.keytab xmpp/​CORPX.UN +### kadmin.local: ​ ktadd -k xmpp.keytab xmpp/​CORPX.UN 
-</​code>​+</​code>​<​code>​ 
 +Запросы с win клиента не наблюдаются,​ запросы с lin клиента такие:
  
 +root@server.corp13.un:​~#​ tail -f /​var/​log/​auth.log
 +
 +Oct  5 08:14:30 server krb5kdc[831]:​ TGS_REQ (6 etypes {18 17 20 19 16 23}) 192.168.13.105:​ ISSUE: authtime 1664946134, etypes {rep=18 tkt=18 ses=18}, user1@CORP13.UN for xmpp/​gate.corp13.un@CORP13.UN
 +Oct  5 08:14:30 server krb5kdc[831]:​ AS_REQ (2 etypes {18 17}) 192.168.13.1:​ NEEDED_PREAUTH:​ xmpp/​gate.corp13.un@CORP13.UN for krbtgt/​CORP13.UN@CORP13.UN,​ Additional pre-authentication required
 +Oct  5 08:14:31 server krb5kdc[831]:​ preauth (encrypted_timestamp) verify failure: Preauthentication failed
 +Oct  5 08:14:31 server krb5kdc[831]:​ AS_REQ (2 etypes {18 17}) 192.168.13.1:​ PREAUTH_FAILED:​ xmpp/​gate.corp13.un@CORP13.UN for krbtgt/​CORP13.UN@CORP13.UN,​ Preauthentication failed
 +</​code>​
 ==== Настройка сервиса ==== ==== Настройка сервиса ====
 <​code>​ <​code>​
сервис_openfire.txt · Last modified: 2024/01/23 13:38 by val