powered by Jive Software

Problem openfire 3.3.2 + sasl

Hi

I just did the steps in: http://wiki.igniterealtime.org/display/WILDFIRE/ConfiguringOpenfirefor+Kerberos, but when i tried to connect with pandion 2.5, the warnn.log report :

Unexpected packet tag (not message,iq,presence)

My configuration is mixed, i have Openfire server runing under Linux.

I can loggin in the administration page with a user of the domain.

What is missing??

I need a lot more information to help you.

Does openfire generate any logs? Does pandion generate any logs?

Can you post the section of your openfire.xml ?

Hi…


gss.conf:

com.sun.security.jgss.accept {

com.sun.security.auth.module.Krb5LoginModule

required

storeKey=true

keyTab="/opt/openfire/resources/equipo.keytab"

doNotPrompt=true

useKeyTab=true

realm=“EMPRESA.COM

principal="xmpp/equipo.empresa.com@EMPRESA.COM"

debug=true;

};

The “equipo.keytab” archive is generated according to :

http://wiki.igniterealtime.org/display/WILDFIRE/ConfiguringOpenfirefor+Kerberos#ConfiguringOpenfireforKerberos-CreateaServicePrincipalandKeytabforO penfire

from win2k3, the user in w2k3 is:

  • Password never expire

  • Trusted for delegation

  • Use DES encryption

I have only message is from warn.log (Previous).

Pandion doesn’'t have log

If the only error you got was “Unexpected packet tag (not message,iq,presence)” it sounds like the client is confused by something. I dont know pandion- does it support GSSAPI authentication?

Also- you might try unchecking the “Use DES” option on that user- that is only needed for older version of Java.