multi domain

Alex alessandroleoni72 at
Thu Aug 10 09:56:28 EDT 2006

Hi all,
I have some problem in setting up krb5.conf for client authentication.
I'm working on a multi domain scenario with several domain like
A.COMPANY.COM, B.COMPANY.COM, ... and one kdc server (Active Directory)
that belongs to A.COMPANY.COM domain.
So I setup a krb5.conf as follows

        default_realm = A.COMPANY.COM

        A.COMPANY.COM = {
            kdc = kdcserver:88


Principals that belongs to A.COMPANY.COM are authenticated (kinit
works), others not.
For those who are not authenticated kinit returns "Client not found in
Kerberos database" error message but user exist in AD.
Any suggestions or how I can get more information would be appreciated.


More information about the Kerberos mailing list