Kerberos authorization to add another user

6.3k Views Asked by naren At 17 November 2016 at 00:45

I am doing Ansible setup on Linux to connect Windows (host) machine, I have successfully connected using KERBEROS method.

I have added user using the following command:

kinit -C [email protected]

and I can check the details using klist, it showed the details tickets.

but I want to add another user i.e user_2 , when I am trying to run the kinit -C [email protected], it overrides the existing klist, I want see both tickets (user_1 & user_2)

my object is using ansible I want to run the playbook on different-different user ( user_1 , user_2)

Original Q&A

There are 2 best solutions below

saranvisa On 18 November 2016 at 15:16

You need to switch user(su) between user_1 and user_2 using Kerberized version of 'ksu' and try klist after that.

In otherwords, use the Kerberos programs ksu in place of its non-Kerberos counterparts su. Then try klist

Thanks

Kumar

Samson Scharfrichter On 18 November 2016 at 17:50

You cannot add an extra user to an existing ticket cache; but you can create distinct caches for distinct users, and switch context.

# new context, new ticket for other account
export KRB5CCNAME=/tmp/krb5cc_$(id -u)_biloute
kinit [email protected]
...
# switch back to default context
unset KRB5CCNAME
...
# switch again
export KRB5CCNAME=/tmp/krb5cc_$(id -u)_biloute
...

Kerberos authorization to add another user

There are 2 best solutions below

Related Questions in ACTIVE-DIRECTORY

Related Questions in ANSIBLE

Related Questions in KERBEROS

Related Questions in ANSIBLE-2.X

Related Questions in KLIST

Trending Questions

Popular # Hahtags

Popular Questions