Windows 2003 domain - Java JAAS Kerberos auth failures
bym666@gmail.com
bym666 at gmail.com
Fri Jan 20 05:47:59 EST 2006
I have problem with authentication from Java client app using JAAS
i have 3 domain controllers for 3 domains - windows2003 servers joined
in one directory
mydomain.com (server rootdc), sale.mydomain.com (saledc),
it.mydomain.com (itdc)
the kerberos authentication in mydomain.com works
------------
java.security.krb5.kdc=rootdc
java.security.krb5.realm=MYDOMAIN.COM
login.name=tester
Refreshing Kerberos configuration
[Krb5LoginModule] user entered username: tester
principal is tester at MYDOMAIN.COM
Commit Succeeded
Logging out
[Krb5LoginModule]: logged out Subject
---------------
authentication of users with realm SALE.MYDOMAIN.COM and
IT.MYDOMAIN.COM on rootdc server doesnt work:
javax.security.auth.login.LoginException: null (68)
authentication of users with realm SALE.MYDOMAIN.COM and
IT.MYDOMAIN.COM
on saledc or itd throws:
[Krb5LoginModule] authentication failed Connection reset
javax.security.auth.login.LoginException: Connection reset at
com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:589)
at
com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:475)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
----------------------------------------------
please can someone help me with what am i doing wrong?? or how to
handle authorization in such an environment??
thanx a lot...
More information about the Kerberos
mailing list