Am 29.09.2016 um 19:18 schrieb David Sommerseth:

> Try using SSSD instead.  That is the service which can cache the users
> password and fetch a ticket as soon as it can reach the KDC.  To only
> use sssd for authentication, you use --enablesssdauth as option to
> authconfig.

Hm... I already am using sssd. And it is obviously working for the main
part, except just for the kinit right at login. Which made me think of a
pam problem.

So you are saying that krb5 should not be mentioned in pam.d/* with
sssd-auth? I wasn't aware of that.

So there must be some misconfiguration here, will try to find out.

Thanx!

Cheerz,
Lars