[14576] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: active directory and and mit kdc

daemon@ATHENA.MIT.EDU (Dirk Kastens)
Wed Jun 20 05:17:01 2001

From: "Dirk Kastens" <dkastens@uos.de>
Date: Wed, 20 Jun 2001 11:01:19 +0200
Message-ID: <9gpoo6$c8o$1@newsserver.rrzn.uni-hannover.de>
To: kerberos@MIT.EDU

Hi,
> however, when I try to login using the kerberos principal on the client
> machine, it fails, and I see no traffic from it to my kdc.
>
> When I try to login to the AD server using the kerberos principal, my
> kdc says CLIENT_NOT_FOUND, and it looks like it's because it's putting
> the realm into lowercase, while the kdc treats it as uppercase.

Did you add host principals for the client machines? If the client
machines are Windows boxes you have to add them with an MD5 key.
Otherwise Windows will not recognize them.
On the MIT KDC use "kadmin.local -e des-cbc-md5:normal" and
then add host principals for your client machines, for example
"ank host/my.win.host".

Dirk


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[14576] in Kerberos

Re: active directory and and mit kdc

daemon@ATHENA.MIT.EDU (Dirk Kastens)Wed Jun 20 05:17:01 2001

daemon@ATHENA.MIT.EDU (Dirk Kastens)
Wed Jun 20 05:17:01 2001