[29385] in Kerberos
Re: javax.naming.AuthenticationException: [LDAP: error code 49 -
daemon@ATHENA.MIT.EDU (Michael B Allen)
Thu Feb 28 15:53:38 2008
Message-ID: <78c6bd860802281252p4822393atdf5ea910a0360c9f@mail.gmail.com>
Date: Thu, 28 Feb 2008 15:52:39 -0500
From: "Michael B Allen" <ioplex@gmail.com>
To: "Ramesh Rao" <rao.rao.d@gmail.com>
In-Reply-To: <db0a16b90802272048g75cc06cegf39abcaf5d43323e@mail.gmail.com>
MIME-Version: 1.0
Content-Disposition: inline
Cc: "kerberos@mit.edu" <kerberos@mit.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On 2/27/08, Ramesh Rao <rao.rao.d@gmail.com> wrote:
> > Hi ,
> >
> > I have a setup as follows:
> > 1. Win2003 AD Server
> > 2. Win2003 Client connected to the AD Domain
> > 3. Now i have krb5.ini, Java Program and JASS conf files (Please
> > find attachment for these files)
> > 4. When i try to run
> > java -Djava.security.auth.login.config=searchWithAuth.conf -
> > Djava.security.krb5.conf=krb5.ini -Dsun.security.krb5.debug=true
> > SearchWithAuth
> >
> > Iam getting the following:
> > D:\Kerberostools>java -
> > Djava.security.auth.login.config=searchWithAuth.conf -Dja
> > va.security.krb5.conf=krb5.ini -Dsun.security.krb5.debug=true
> > SearchWithAuth
> > Kerberos username [Ramesh.rao]: Ramesh.rao
> > Kerberos password for Ramesh.rao: Password12
> > >>> EType: sun.security.krb5.internal.crypto.DesCbcMd5EType
Are you sure the account for 'Ramesh.rao' in AD is using DES? User
accounts are RC4 by default unless the "This account uses DES
encryption" flag is set.
Mike
<snip huge unnecessary hexdump output>
> > javax.naming.AuthenticationException: [LDAP: error code 49 -
> > 8009030B: LdapErr:
> > DSID-0C09043E, comment: AcceptSecurityContext error, data 0, vece ]
> > at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2988)
> > at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:
> > 2934)
> > at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:
> > 2735)
> > at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2649)
> > at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:290)
> > at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL
> > (LdapCtxFactory.java:175)
--
Michael B Allen
PHP Active Directory SPNEGO SSO
http://www.ioplex.com/
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
