[27836] in Kerberos
Re: Different Heimdal/MIT behaviour of krb5_get_credentials ?
daemon@ATHENA.MIT.EDU (Henry B. Hotz)
Thu May 31 21:20:20 2007
In-Reply-To: <f3n3ug$i6$1@sea.gmane.org>
Mime-Version: 1.0 (Apple Message framework v752.3)
Message-Id: <65054D89-41A4-4CA7-B6A1-9C5059848416@jpl.nasa.gov>
From: "Henry B. Hotz" <hotz@jpl.nasa.gov>
Date: Thu, 31 May 2007 18:20:02 -0700
To: heimdal-discuss@sics.se, "Markus Moeller" <huaraz@moeller.plus.com>
Cc: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On May 31, 2007, at 11:25 AM, Markus Moeller wrote:
> I have a AD forest with MM.COM with domains DOM1.MM.COM,DOM2.MM.COM
> and
> SUB.DOM2.MM.COM which all trust each other. To test the
> availability of
> service tickets I created the following short program:
Any particular reason you didn't use kvno (MIT) and kgetcred (Heimdal)?
To properly debug the problem you probably want to look at the kdc
logs to see what actually got requested as compared to what's
available. You can also get that info from a tcpdump/snoop, but it's
not as easy.
------------------------------------------------------------------------
The opinions expressed in this message are mine,
not those of Caltech, JPL, NASA, or the US Government.
Henry.B.Hotz@jpl.nasa.gov, or hbhotz@oxy.edu
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
