I have AD (active directory) user, "asdf", created and a matching local AIX user name. Using "kinit", I can successfully authenticate it against the MS AD but when they I try to login via SSH with the same user name, it doesn't work. How can I get AIX to allow kerberos authentication as a valid means of letting users on the box? It feels like I am one step away from getting this mess to work.
localhost:/(697)$ lsuser asdf
asdf registry=files SYSTEM=KRB5files
localhost:/(692)$ lsauthent
Kerberos 5
Standard Aix
localhost:/(693)$
In my debug syslogs, I see this:
Dec 8 15:15:55 localhost auth|security:info syslog: pts/2: failed login attempt for UNKNOWN_USER from remote_server
It is like AIX doesn't see the KRB5 users as valid user IDs.