Java Kerberos and Windows 2003 Server
Rouiller Claude
claude.rouiller at rtc.ch
Mon Jun 21 03:31:01 EDT 2004
Seema
Now, I've configured the client to use TCP only
(I've set "udp_preference_limit = 1" in krb5.ini).
That solves the problem so far.
In fact I realiszed that it wasn't only a problem with kinit, but with the
GSS-API as well.
(Maybe the GSS-API uses kinit internally?).
The problem occurs when the packets are too large for UDP and the client
switchs to TCP. The error seems to occur during the TCP-fallback. Here is a
part of the stack trace:
java.lang.IllegalAccessError:
tried to access class sun.security.krb5.KrbKdcReq
from class sun.security.krb5.internal.az
...
Claude
-----Original Message-----
From: Seema Malkani [mailto:Seema.Malkani at Sun.COM]
Sent: Sunday, June 20, 2004 7:57 PM
To: Rouiller Claude
Subject: Java Kerberos and Windows 2003 Server
Rouiller Claude,
You have posted following problem in the java forums.
Would like to get more info on this problem.
Please send me the details.
----- Java forums -------
- Krb5LoginModule works all right.
- kinit only works with UDP (small tickets) and crashes when it has to
try with TCP (large tickets)
Am I right? (please tell me if you managed to get a (large) ticket using
kinit and TCP)
Of course, this applies if you use JDK 1.4.2 on Windows XP and a Windows
2003 KDC.
----- Java forums -------
Thanks,
Seema
More information about the Kerberos
mailing list