[krbdev.mit.edu #5836] Re: [krbdev.mit.edu #5838] libkrb5 (libads/kerberos.c:ads_kinit_password) fails with 16 bit UTF8 characters in usernames and/or passwords
Ken Raeburn via RT
rt-comment at krbdev.mit.edu
Thu Nov 8 22:00:04 EST 2007
On Nov 7, 2007, at 10:38, Dan Searle via RT wrote:
> I came across this problem when trying to use the Samba "net" command,
> or pam_krb5 to authenticate users against an active directory, they
> fail if the username and/or password uses UTF8 characters encoded with
> more than one byte, for instance...
That's correct, we currently don't support non-ASCII characters well,
and in particular, non-ASCII passwords for accounts using RC4
encryption just don't work when talking to Microsoft implementations,
or anything compatible with their handling of non-ASCII passwords.
It's one of the things we'd like to fix up, if those funding the
Kerberos Consortium rate it an important enough problem of course...
Ken
More information about the krb5-bugs
mailing list