SshKerberos192012-10-31 22:21:43RokSosic182012-09-28 03:58:36netjAdded SSH+Kerberos for Mac, OS X172012-08-10 01:16:22akrevl162012-08-10 01:09:42akrevl152012-08-10 01:05:20akrevl142012-08-10 01:05:15akrevl132012-08-09 22:48:01akrevl122012-08-09 22:18:17akrevl112012-08-09 22:15:09akrevl102012-08-09 22:14:45akrevl92012-08-09 22:14:26akrevl82012-08-09 22:14:08akrevl72012-08-09 22:05:08akrevl62012-08-09 22:04:51akrevl52012-08-09 21:56:47akrevl42012-08-09 21:38:14akrevl32012-08-09 21:34:33akrevl22012-08-09 21:33:48akrevl12012-08-09 21:27:58akrevlSSH and KerberosThis page describes how to tackle the issue of CS managed machines (e.g. hulk and rocky) not allowing you to login without a password via SSH. Please note that all the tools are already configured on Bruce, Rambo and Zarya. 1. Configure your OSConfigure CentOS 6: SshKerberosCentos6 Configure CentOS 5: SshKerberosCentos5 Configure Mac OS X: SshKerberosMac More OSs coming soon... 2. Use the Kerberos toolsGet a ticketWhenever you would like to log in to CS managed machines (e.g. hulk, rocky) just open a terminal and enter: This command will ask you for the password of your_cs_id and obtain a Kerberos ticket for the account your_cs_id. Now you can login to the CS managed machines without using a password (provided that you are logging in as your_cs_id, of course). If you would like to manually specify the lifetime of the Kerberos ticket, you can do it with the -l switch: The command above will issue a ticket with a lifetime of 30 days for the username johns. You can obtain a ticket for any username if you have a password for that usename (so my username is js on the local machine I can still obtain the ticket for my johns CS account). Listing your ticketsYou can list all of the tickets that you currently posses with the klist command: Deleting ticketsThere may be a case when you do not need the Kerberos ticket any more and you want to delete. No problem, you can do this: