AD MIT Interoperability rc4-hmac

[rousset]

Hello,

I have established a trust relationship between Active Directory and MIT 
Kerberos realm, mapped principals, and can successfully logon to a 
Win2k workstation using a Kerberos principal. 
This is right with attribute "PRE-AUTH required" enabled and encryption des-cbc-crc, or md5.
But I'd like to set rc4-hmac as default encryption on MIT principals.
It fails with "Additionnal Pre-authentication required" log on MIT's side if pre-auth is enabled
(Work if pre-auth disabled)


Thanks
Denis