Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Fixed
-
2.7.0
Description
Cannot connect to MIT KDC admin server when port is specified in kerberos-env/admin_server_host. The following error is seen when validating the KDC admin credentials:
kinit: Server not found in Kerberos database while getting initial credentials
The reason for this is due to how the credentials are created for accessing the MIT KDC administration server.
kinit -c <path> -S kadmin/<kerberos-env/admin_server_host> <principal>
If a port was added to the kerberos-env/admin_server_host value then the server principal will be generated like kadmin/kdc.example.com:4749 rather than kadmin/kdc.example.com. Therefore the server principal is not found.