From: https://www.google.com/accounts/o8/id?id=AItOawlD62POWsTXHWCbVk6yoM6XGuVmxXX7tDo <https://www.google.com/accounts/o8/id?id=AItOawlD62POWsTXHWCbVk6yoM6XGuVmxXX7tDo@web>
Date: Tue, 17 Aug 2010 21:14:22 +0000 (-0700)
Subject: dotted principal names can be used with -allow-dotted-principals
X-Git-Url: http://git.openafs.org/?p=openafs-wiki.git;a=commitdiff_plain;h=b85c16f044efeefa1628931929b342dc260de5d8;hp=bfd18f5261343e13a7952004ac3e38b70b1ecd68

dotted principal names can be used with -allow-dotted-principals
---

diff --git a/AFSLore/AdminFAQ.mdwn b/AFSLore/AdminFAQ.mdwn
index 5b89e50..fd69120 100644
--- a/AFSLore/AdminFAQ.mdwn
+++ b/AFSLore/AdminFAQ.mdwn
@@ -1094,7 +1094,7 @@ Answer:
     grep 19270407 /usr/afsws/include/rx/*
     /usr/afsws/include/rx/rxkad.h:#define RXKADBADTICKET (19270407L)
 
-Note that a common cause of this problem is the use of periods (".") in kerberos principals.  If you have a kerberos principal such as my.name@REALM.COM and create the corresponding pts userid "my.name" you will get the cryptic error above.  So, don't use periods in your principal names if you're using AFS.
+Note that a common cause of this problem is the use of periods (".") in kerberos principals.  If you have a kerberos principal such as my.name@REALM.COM and create the corresponding pts userid "my.name" you will get the cryptic error above. If you want to use such principal names and have OpenAFS 1.4.7 or later, you can pass the option -allow-dotted-principals to all server daemons to allow their use. See the -allow-dotted-principals option in the fileserver (or any server daemon) documentation for more information.
 
 ### <a name="3.45 I get tickets and tokens, b"></a> 3.45 I get tickets and tokens, but still get Permission denied.