Content Platform Engine, Version 5.2.1            

Identity user is not found in the keytab

You can recover from conditions where the identity user is either not in the keytab or the keytab file cannot be found.

Symptoms

The user could not be found in the keytab.

Key for the principal FNCEWS_myce01@MYDOM. EXAMPLE.COM not available in default keytab.

No Kerberos creds in keytab for principal FNCEWS_myce01@MYDOM.EXAMPLE.COM.

Resolving the problem

These errors could either indicate that the "identity" user (for example, FNCEWS_myce01@MYDOM. EXAMPLE.COM) was not in the keytab or that the keytab file itself could not be found. Use "ktab" by itself from the command line to list the contents of the default keytab file and check for misspellings. The keytab file is, by default, the c:\Documents and Settings\user\krb5.keytab file. Where user is the name of the account that the application server is running as. Note that if the application server is running as a service, there will probably be no corresponding user directory and it is best if the keytabPath="c:/my_keytab" KrbServiceLoginModule option is used to specify what and where the keytab is.



Last updated: March 2016
p8psn059.htm

© Copyright IBM Corporation 2016.