Open the Authentication Configuration utility as shown in the sequence below:
(ƒ) » Applications » Administration » Authentication
We will first configure Kerberos. Click the Authentication tab and check the checkbox labeled Enable Kerberos Support. Click the button. Enter the following values:
Realm:
u.washington.eduKDCs:
k5-kdc1.u.washington.edu,k5-kdc2.u.washington.eduAdmin Servers:
k5-admin.u.washington.edu
Leave the checkboxes unchecked and press the button. Press the Options tab and check the checkboxes labeled Local authorization is sufficient for local users and Create Home directories on the first login. Press the button.
You should now be able to open Terminal and use kinit netid to create a Kerberos ticket, klist to list the ticket information, and then ssh netid@host to open a kerberized login session to a UW server such as homer, without being prompted again for your NetID password.
For Kerberos to work, your system clock must be synchronized to the Kerberos realm's KDC to within a couple of minutes. See (ƒ) » Applications » Administration » Date & Time to set your system clock and configure network time service.
From the Terminal, you can synchronize to UW time by installing and running rdate:
sudo yum -y install rdate sudo rdate -s time.u.washington.edu