Windows not using SRV rr's to locate KDCs

[Richard E. Silverman]

Following up: a support call to Microsoft revealed magic, undocumented
bits to get this working.  Specifically:

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Kerberos\Domains\<REALM>\RealmFlags = REG_DWORD

#define KERB_MIT_REALM_KDC_LOOKUP             0x00010000                                          
#define KERB_MIT_REALM_KPWD_LOOKUP            0x00020000                                          

ksetup.exe sets the flags in this word, but does not know about these bits.

-- 
  Richard Silverman
  res at qoxp.net