[14573] in Kerberos
active directory and and mit kdc
daemon@ATHENA.MIT.EDU (foo@commerceflow.com)
Fri Jun 15 02:02:25 2001
To: kerberos@mit.edu
From: foo@commerceflow.com
Date: 14 Jun 2001 21:21:24 -0700
Message-ID: <6ysnh2v0e3.fsf@seph.commerceflow.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
I'm trying to set up a windows active directory domain, with clients
that authenticate against an MIT kdc.
I've found a variety of descriptions on how to do this, but am
encountering a problem. I've created my windows domain, and set up the
trust relationships with the mit kdc realm. I created a user account,
and set up a mapping to the kerberos principal. I ran ksetup on the
client machine and the AD server to tell them where the kdc is.
however, when I try to login using the kerberos principal on the client
machine, it fails, and I see no traffic from it to my kdc.
When I try to login to the AD server using the kerberos principal, my
kdc says CLIENT_NOT_FOUND, and it looks like it's because it's putting
the realm into lowercase, while the kdc treats it as uppercase.
has anyone encountered problems like either of these, or done this
before? feel like offering advice or implantation notes?
thanks
seph
