I was able to get one step further. Searching for led me to this page:
https://openafs-info.openafs.narkive.co ... -principal
The user was attempting to use the command aklog, which I had not issued.
So I issued `kinit afs` and `aklog -d`, which succeeded:
I also restarted the bos or `openafs-fileserver` service.
Rerunning the original `bos` command now gives me another error:
Listing the kerberos keys and their encryption type gives me the following:
Code:
/proc/fs/openafs/afs_ioctlhttps://openafs-info.openafs.narkive.co ... -principal
The user was attempting to use the command aklog, which I had not issued.
So I issued `kinit afs` and `aklog -d`, which succeeded:
Code:
█[asus][~][0]$ aklog -dAuthenticating to cell asus.erjoalgo.com (server asus.erjoalgo.com).Trying to authenticate to user's realm ASUS.ERJOALGO.COM.Getting tickets: afs/asus.erjoalgo.com@ASUS.ERJOALGO.COMWe've deduced that we need to authenticate to realm ASUS.ERJOALGO.COM.Getting tickets: afs/asus.erjoalgo.com@ASUS.ERJOALGO.COMGetting tickets: afs@ASUS.ERJOALGO.COMUsing Kerberos V5 ticket nativelyIdentical tokens already exist; skipping.Reading /home/ealfonso/.xlog for cells to authenticate to.█Rerunning the original `bos` command now gives me another error:
Code:
█[asus][~][0]$ bos listkeys -server asus.erjoalgo.combos: ticket contained unknown key version number error encountered while listing keys█Code:
█[asus][~][0]$ klist -eTicket cache: FILE:/tmp/krb5cc_1000Default principal: afs@ASUS.ERJOALGO.COMValid starting Expires Service principal05/31/2024 13:37:51 05/31/2024 23:37:51 krbtgt/ASUS.ERJOALGO.COM@ASUS.ERJOALGO.COM Etype (skey, tkt): aes256-cts-hmac-sha1-96, aes256-cts-hmac-sha1-9605/31/2024 13:38:49 05/31/2024 23:37:51 afs@ASUS.ERJOALGO.COM Etype (skey, tkt): aes256-cts-hmac-sha1-96, aes256-cts-hmac-sha1-96█[asus][~][0]$Statistics: Posted by ealfonsoy — 2024-05-31 17:54