ktpass fails to create a service principal (win 2000 server SP4)
Douglas E. Engert
deengert at anl.gov
Tue Nov 10 12:25:54 EST 2009
Julien Montmartin wrote:
> Hi List,
>
> I'm working on a kerberized application server and I have some trouble when
> I try to generate the keytab with ktpass... Although evrything works nicely
> for demo in the lab, it fails in real world !
>
> Here the command I use (windows 2000 server SP4) :
>
> ktpass -ptype KRB5_NT_PRINCIPAL -princ HTTP/
> myComputer.private.myCompagnie.com at PRIVATE.MYCOMPAGNIE.COM -mapuser
> testUser at private.myCompagnie.com -pass xyz -out C:\temp\keytab
-mapuser testUser
> Failed to get DN from search result: 0X80070057
> Failed to locate user "(samAccountName=testUser at private.myCompagnie.com)".
> Failed to retrieve user info for testUser at private.myCompagnie.com: 0x8ad.
> Aborted.
>
> testUser is a brand new user created for the service. Are there any traps
> when you create new users in AD ? (I'm a beginner with AD). Any idea or
> pointer to investigate this error ?
>
> Thanks,
>
> Julien
> ________________________________________________
> Kerberos mailing list Kerberos at mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
>
--
Douglas E. Engert <DEEngert at anl.gov>
Argonne National Laboratory
9700 South Cass Avenue
Argonne, Illinois 60439
(630) 252-5444
More information about the Kerberos
mailing list