I can´t map users on Windows 2000

Douglas E. Engert deengert at anl.gov
Wed Oct 23 10:28:05 EDT 2002


Try login in as  ntadmin at MYDOMAIN.ORG
This will then log you on, as the Administrator

Administrator is a local user only in your configuration.


User lists wrote:
> 
> Hi all,
> 
>   I have installed a KDC unix server. I have created
> all entries on the kerberos database (users, servers,
> etc) like kerberos MIT documentation says. Then, I
> have created one entry for Windows 2000 Server, and I
> execute the following commands on the Windows 2000
> Server:
> 
> ksetup /setdomain MYDOMAIN.ORG
> ksetup /addkdc MYDOMAIN.ORG myserver.mydomain.org
> ksetup /setmachpassword password
> 
> After reboot, I execute this commands:
> 
> ksetup /mapuser ntadmin at MYDOMAIN.ORG Administrator
> ksetup /mapuser * *
> 
> But when I want to login on the Kerberos domain,
> Windows 2000 refuse the login. In the server logs I
> see this: "Couldn´t get ticket for
> Administrator at MYDOMAIN.ORG, user doesn´t exists".
> Why Windows try to authenticate with
> Administrator at MYDOMAIN.ORG if I previously map this
> user ??? What I do wrong???
> 
> Thank you very much and sorry for my bad english.
> 
> _________________________________________________________
> Do You Yahoo!?
> Información de Estados Unidos y América Latina, en Yahoo! Noticias.
> Visítanos en http://noticias.espanol.yahoo.com
> ________________________________________________
> Kerberos mailing list           Kerberos at mit.edu
> http://mailman.mit.edu/mailman/listinfo/kerberos

-- 

 Douglas E. Engert  <DEEngert at anl.gov>
 Argonne National Laboratory
 9700 South Cass Avenue
 Argonne, Illinois  60439 
 (630) 252-5444



More information about the Kerberos mailing list