RHEL3: All users can SSH into box fine, but some cant telnet

Posted on 2006-05-03
Last Modified: 2010-04-20
I have a RHEL3 box. I only have 2 users setup on this box in addition to root:


User1 can SSH and telnet into the box. This user is a part of the "root" group.
User2 can SSH but not telnet into the box. This user is also a part of the "root" group. I get the following error:

login: User2
Password for User2:
login: Cannot resolve network address for KDC in requested realm while getting initial credentials
Login incorrect

I am positive that the password typed is correct. Why can't user2 telnet in?

Question by:bfilipek
    LVL 43

    Accepted Solution

    > login: Cannot resolve network address for KDC in requested realm while getting initial credentials
    have the source IP (from which user2 is logining in) reverse dns entry (accessible from the RHEL3 box?)
    LVL 27

    Assisted Solution

    You are using kerberized telnet daemon.
    If you have no kerberos authentication, you may turn it off:

    file /etc/xinetd.d/telnet

    add line:

    server_args = -a off

    below server = ...
    LVL 27

    Expert Comment

    also you may use non-kerberized telnet daemon without adding '-a off' argument, just change 'server =' option:
    instead of

    LVL 87

    Expert Comment

    Anyway, why do you want to use telnet in the first place since you have SSH? SSH is much better and securer than telnet. If I were you I'd completly disable telnet and just use SSH.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Join & Write a Comment

    I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
    Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    755 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now