RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.
Bug 1464831 - About the procedure to use gssftp service
Summary: About the procedure to use gssftp service
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: doc-System_Level_Authentication_Guide
Version: 7.3
Hardware: Unspecified
OS: Unspecified
high
unspecified
Target Milestone: rc
: ---
Assignee: Filip Hanzelka
QA Contact: ipa-qe
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2017-06-26 01:59 UTC by ddu
Modified: 2019-03-06 00:58 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed: 2017-11-20 13:02:06 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description ddu 2017-06-26 01:59:57 UTC 
Document URL: 

https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/System-Level_Authentication_Guide/Configuring_a_Kerberos_5_Client.html

Section Number and Name: 

11.3. CONFIGURING A KERBEROS CLIENT

Describe the issue: 

In the section 11.3, the doc says [To use other Kerberos-aware network services, install the krb5-server package and start the services. The Kerberos-aware services are listed in Table 11.3, “Common Kerberos-aware Services”.]

But customer complaints that krb5-server package doesn't provide the related service file(like gssftp) in "table 11.3".

Suggestions for improvement: 

Actually in RHEL7, gssftp is provided by krb5-appl-servers package in epel channel.

It would be better to mention that in the documentation.

Additional information: 

This problem is the same in RHEL6.
Comment 3 Robbie Harwood 2017-10-26 15:02:24 UTC 
Oh boy.  We really shouldn't be recommending any of the things provided by krb5-appl, not only because they're from EPEL and we shouldn't recommend those, but also because most of them have a very outdated view of security.  Users should use tools like ssh, etc. instead.

I removed krb5-appl in Fedora 27 ( https://bugzilla.redhat.com/show_bug.cgi?id=1474829 ), and we very intentionally don't ship these in rhel7 already.
Comment 4 Aneta Šteflová Petrová 2017-11-20 13:02:06 UTC 
https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html-single/system-level_authentication_guide/
Note You need to log in before you can comment on or make changes to this bug.