Somehow, our linux machines were set up to where logging in through puTTy, for instance, was automatic. The Linux machines use NIS. And they, again, somehow must have been authenticating against our Windows servers, to allow Windows users logging in over SSH to be automatically logged in. No prompt for password. It had to be NIS, I'm supposing, because there were no key pairs created for my user, for instance. But as long as NIS and AD passwords matched, I'd be logged in automatically.
That stopped working over the weekend. I can't even find a tutorial on how to set something like that up, let alone debug it. I don't know where to start. But SSH'ing into any linux machine, I need to type in my password. Same for everyone else.
This is not a major inconvenience on its own, but my concern is what else it might effect. NFS permissions, services that rely on auto-auth, etc.
Just looking for some guidance on where to even start.
[Edit]: Ok. I found a machine where password-less entry is still working. (Don't know why). The entry in /var/log/secure which appears with each logon is
sshd[*pid*]: Accepted gssapi-with-mic for **user** from **ip.add.re.ss** port **number** ssh2
So I can probably start googling that. But if anyone here still might be able to provide guidance/assistance/help, I'd natural be very grateful.
[Edit2]: It has to do with Kerberos. krb5.keytab is missing. Time to learn about Kerberos, I guess. And how to generate keytabs.
[link][10 comments]