kerberos credentials on systemd-based CentOS 7

Stephen Ingram sbingram at
Sun Sep 20 21:00:26 EDT 2015

I'm trying to setup a kerberos connection to an mupdate server using gssapi
authentication. I'm creating a credentials cache using a keytab file on the
system for user imap/ In the old init.d-based system, I
specified the KRB5_KTNAME and KRB5CCNAME environment variables, then when
the cyrus-master program ran, the ticket was fetched and the system was
able to connect. However, with systemd, it appears as though the server
should maybe use a persistent keyring to store the credentials. Even if I
try to use a file, say inside /var/lib/imap to escape selinux, the system
still fails to authenticate. Does anyone have this setup working that
allows a cyrus client to connect to an mupdate server to fetch mailbox

-------------- next part --------------
An HTML attachment was scrubbed...

More information about the Info-cyrus mailing list