k4miL0
August 2, 2007, 4:03pm
1
Hi
I just did the steps in: http://wiki.igniterealtime.org/display/WILDFIRE/Configuring Openfire for+Kerberos, but when i tried to connect with pandion 2.5, the warnn.log report :
Unexpected packet tag (not message,iq,presence)
My configuration is mixed, i have Openfire server runing under Linux.
I can loggin in the administration page with a user of the domain.
What is missing??
Jay
August 2, 2007, 6:09pm
2
I need a lot more information to help you.
Does openfire generate any logs? Does pandion generate any logs?
Can you post the section of your openfire.xml ?
k4miL0
August 2, 2007, 6:55pm
3
Hi…
…
…
gss.conf:
com.sun.security.jgss.accept {
com.sun.security.auth.module.Krb5LoginModule
required
storeKey=true
keyTab="/opt/openfire/resources/equipo.keytab"
doNotPrompt=true
useKeyTab=true
realm=“EMPRESA.COM ”
principal="xmpp/equipo.empresa.com@EMPRESA.COM"
debug=true;
};
The “equipo.keytab” archive is generated according to :
http://wiki.igniterealtime.org/display/WILDFIRE/Configuring Openfire for+Kerberos#ConfiguringOpenfireforKerberos-CreateaServicePrincipalandKeytabforO penfire
from win2k3, the user in w2k3 is:
Password never expire
Trusted for delegation
Use DES encryption
I have only message is from warn.log (Previous).
Pandion doesn’'t have log
Jay
August 2, 2007, 9:45pm
4
If the only error you got was “Unexpected packet tag (not message,iq,presence)” it sounds like the client is confused by something. I dont know pandion- does it support GSSAPI authentication?
Also- you might try unchecking the “Use DES” option on that user- that is only needed for older version of Java.