pre-authentication
naveen.bn
naveen.bn at globaledgesoft.com
Tue Jun 24 01:15:05 EDT 2008
Hi Kevin,
Guide on this , When i use require_preauth for the client and try to send the AS_REQ with
pa-data using the command
kinit -X X509_user_identity=FILE:/client/test.pem,/client/test.key naveen
The first AS_REQ will go with out pa-data to the KDC, the kdc will replay with KRB5KDC_ERR_PREAUTH_REQUIRED (25)
and the second AS_REQ will go from the client to the KDC with pa-data filled and i get a AS_REP back from kdc
with the ticket.
Please help me in finding the reason behind AS_REQ going twice from the client.
Thank you
with regards
naveen
More information about the Kerberos
mailing list