OpenAFS: Kerberos KDC stash file missing, cannot login with kinit

Symptoms:

Solution

Recreate your stash file with the kdb5_util utility. You need your kerberos master password for this (hope you remember):

# kdb5_util stash -f /etc/krb5kdc/stash
Enter KDC database master key:
# ls /etc/krb5kdc/stash
/etc/krb5kdc/stash
# hexdump /etc/krb5kdc/stash
0000000 0001 0008 0000 73a1 89bf 70b5 6416     
000000e

Now you should be able to start the KDC:

# /etc/init.d/krb5-kdc start
Starting Kerberos KDC: krb5kdc krb524d.

Also logging in now should succeed:

# kinit root
Password for root@AFS.TEST: 
# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: root@AFS.TEST

Valid starting     Expires            Service principal
11/12/03 12:31:30  11/12/03 22:31:30  krbtgt/AFS.TEST@AFS.TEST


Kerberos 4 ticket cache: /tmp/tkt0
klist: You have no tickets cached

Keywords: stash krb kerberos kdc debian kinit credentials   Author: Mathias Kettner

Tauschzone MK