OpenSSH 5.2p1 with GSSAPI Authentication
Matthias Andree
matthias.andree at gmx.de
Fri Aug 21 09:52:45 UTC 2009
Am 21.08.2009, 09:01 Uhr, schrieb John Marshall
<john.marshall at riverwillow.com.au>:
> Does *anybody* have this working?
>
> I've been using SSH with GSSAPI authentication for a couple of years but
> found it no longer worked with sshd on an FreeBSD 8.0-BETA. FreeBSD
> 8.0-BETA has OpenSSH 5.2p1 included in the base system. I have tried
> installing the OpenSSH 5.2p1 port (security/openssh-portable) on FreeBSD
> 7.2 servers and I can't get that to work either. sshd from the OpenSSH
> 5.1p1 included in the 7.n base system works fine.
>
> The only common denominator in all of my testing has been OpenSSH 5.2p1.
> The debug logging from sshd shows that the gssapi library returns an
> authentication failure; but gssapi authentication for squid and ldap
> work fine on the same box (both 7.2 and 8.0).
>
> I'm stuck. The OpenSSH folks say that nothing has changed that would
> break gssapi authentication.
>
> Does *anybody* have this working?
How does this relate to your post on -CURRENT where you suggest upgrade
Heimdal for 8.0 from 1.1.0 to 1.2.1 (you wrote that you needed that for
OpenLDAP)? Have you built OpenSSH against Heimdal 1.2.1 or against 1.1.0?
--
Matthias Andree
More information about the freebsd-ports
mailing list