RE: DNS, Open Directory and Kerberos

I ran sudo changeip –checkhost name and everything looks great, dns names match and “nothing to change”.

I have converted it back down to a Standalone and want to bind with AD, but now I am receiving error 14090 (eDSAuthFailed) after entering AD administrator credentials.

 

 

 

Hello,

 

I am trying to bring up a new Xserve with OS X 10.5.7 as an Open Directory Master running Kerberos. The server will be in an Active Directory environment with the Windows 2003 server running DNS.

My issue is that when I bring up Open Director as a Master, Kerberos does not initialize or run automatically. I have tried 2 configurations with DNS – one with the Xserve running its own DNS and master zone, and another try with the Xserve running the DNS with a secondary zone. In both cases Kerberos does not start up automatically, I have to use kerberosautoconfig or kdcsetup.

 

If use sudo krb5kdc to get the Kerberos running, its still not working properly and it shows errors in the log:   

“Address already in use - Cannot bind TCP server socket on ::.88” 

“set up 0 sockets”

“No sockets set up?”

My ideal setup is to segregate the Mac and Windows network, so that the Mac clients will use the OD Master with Kerberos and the Xserve DNS and the Windows clients use the AD and Win2003 DNS. 

What am I doing wrong that Kerberos never starts up on its own with I promote my Xserve to OD Master?

I’ve looked into this and the solutions out there don’t seem to apply or work in my situation, any help is greatly appreciated.

Thank you,

 

Nima Vafi

 

 

What’s the value returned of;

 

Sudo changeip –checkhostname

 

When run from the server?

 

- JD