The customer is using IPA on s390x and tries to enable OTP for a user, but OTP authentication fails with kinit: Preauthentication failed while getting initial credentials
kinit: Preauthentication failed while getting initial credentials
kinit admin; ipa user-add otpuser --first otp --last user --password
kinit otpuser
kinit admin; ipa user-mod otpuser --user-auth-type otp; ipa otptoken-add --owner otpuser
kdestroy -A; kinit -n; kinit -T KCM:0 otpuser
kinit fails with the error message kinit: Preauthentication failed while getting initial credentials
The issue happens on s390x but not on x86_64.
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=2216872
Issue linked to bug 2216872
Metadata Update from @frenaud: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/6898
master:
Metadata Update from @frenaud: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=2216872, https://bugzilla.redhat.com/show_bug.cgi?id=2218293 (was: https://bugzilla.redhat.com/show_bug.cgi?id=2216872)
ipa-4-10:
ipa-4-9:
Metadata Update from @rcritten: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Metadata Update from @abbra: - Custom field changelog adjusted to Correct endianness issue that affected 2FA tokens use case for IPA server running on a mainframe (S390x architecture).
Log in to comment on this ticket.