The following document tells you how to install the kerberos client software on a Red Hat Linux system. This will allow you to make kerberized, encrypted connections to AIT services like telnet or ftp on the isua machines.
Note:If you have any of the Iowa State Linux packages installed, you can skip to the Using kerberos software section.
Download the two following rpms: krb5-libs and krb5-workstation. You can get them from the AIT mirror of Red Hat Linux, in /pub/redhat/< version >/updates/, where < version > is your version of Red Hat Linux (8.0, 9, etc.)
Install the rpms by executing the following as root: rpm -ivh krb5-*
Download the krb5.conf file from ftp.iastate.edu/pub/unix/kerberos/ and place it in the /etc directory.
The krb5-workstation software includes kerberized ftp and telnet clients, which allow you to make encrypted connections to Project Vincent machines (like the isua machines).
Before you can use kerberized services, you need to obtain a kerberos ticket. To do so, type /usr/kerberos/bin/kinit Net-ID, where Net-ID is your Iowa State Network-ID, and enter your Net-ID password. This will log you in for 10 hours. To destroy a ticket and log out of kerberos before then, run /usr/kerberos/bin/kdestroy.
Note:If you use the Iowa State Linux modules that log you in to Kerberos automatically on login, you will not have to do the above step. To verify if this is true, run /usr/kerberos/bin/klist to list your tickets. If it has tickets already, you do not need to log in.
To telnet to a Project Vincent machine, type /usr/kerberos/bin/telnet -axl Net-ID machine-name. If the machine you are connecting to is one of the isua machines, you will have to connect to isuaN.iastate.edu, where N is a number from 1-5.
To ftp to a Project Vincent machine, type /usr/kerberos/bin/ftp machine-name. If the machine you are connecting to is one of the isua machines, you will have to connect to isuaN.iastate.edu, where N is a number from 1-5.
Last updated by kula, 5 January 2004