Windows 2003 domain - Java JAAS Kerberos auth failures

[bym666@gmail.com]

I have problem with authentication from Java client app using JAAS
i have 3 domain controllers for 3 domains  - windows2003 servers joined
in one directory
mydomain.com (server rootdc), sale.mydomain.com (saledc),
it.mydomain.com (itdc)

the kerberos authentication in mydomain.com works

------------
java.security.krb5.kdc=rootdc
java.security.krb5.realm=MYDOMAIN.COM
login.name=tester
Refreshing Kerberos configuration
                [Krb5LoginModule] user entered username: tester

principal is tester at MYDOMAIN.COM
Commit Succeeded
Logging out
[Krb5LoginModule]: logged out Subject
---------------

authentication of users with realm SALE.MYDOMAIN.COM and
IT.MYDOMAIN.COM on rootdc server doesnt work:
javax.security.auth.login.LoginException: null (68)

authentication of users with realm SALE.MYDOMAIN.COM and
IT.MYDOMAIN.COM
on saledc or itd throws:
[Krb5LoginModule] authentication failed Connection reset
javax.security.auth.login.LoginException: Connection reset at
com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:589)
        at
com.sun.security.auth.module.Krb5LoginModule.login(Krb5LoginModule.java:475)
        at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
        at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)

 ----------------------------------------------

please can someone help me with what am i doing wrong?? or how to
handle authorization in such an environment??
thanx a lot...