Decrypt integrity check failed

[miten]

Hi,

I am trying to setup kerberos on laptop.   Below is dump of few items
that shows that shows that I have principal mitenm and host setup.  I
am able to kinit as admin but for mitenm I get errror.
output of klist:
--------------------
 4 host/
opensolarismiten.mehta.ghatkopar.mumbai.mh.in.com at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
(AES-256 CTS mode with 96-bit SHA-1 HMAC)
   4 host/
opensolarismiten.mehta.ghatkopar.mumbai.mh.in.com at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
(AES-128 CTS mode with 96-bit SHA-1 HMAC)
   4 host/
opensolarismiten.mehta.ghatkopar.mumbai.mh.in.com at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
(Triple DES cbc mode with HMAC/sha1)
   4 host/
opensolarismiten.mehta.ghatkopar.mumbai.mh.in.com at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
(ArcFour with HMAC/md5)
   4 host/
opensolarismiten.mehta.ghatkopar.mumbai.mh.in.com at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
(DES cbc mode with RSA-MD5)
   5 mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM (AES-256 CTS mode with 96-
bit SHA-1 HMAC)
   5 mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM (AES-128 CTS mode with 96-
bit SHA-1 HMAC)
   5 mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM (Triple DES cbc mode with
HMAC/sha1)
   5 mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM (ArcFour with HMAC/md5)
   5 mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM (DES cbc mode with RSA-
MD5)
mitenm at opensolarismiten:/usr/lib/krb5# svcadm -v enable -s telnet
svc:/network/telnet:default enabled.
mitenm at opensolarismiten:/usr/lib/krb5# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: admin at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM

Valid starting                Expires                Service principal
01/02/10 20:16:11  01/03/10 06:16:11  krbtgt/
MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM
	renew until 01/09/10 20:16:11



error for kinit as mitenm:
----------------------------------

Jan 02 22:52:35 opensolarismiten krb5kdc[1158](info): AS_REQ (6 etypes
{18 17 16 23 3 1}) 192.168.1.3: NEEDED_PREAUTH:
mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM for krbtgt/
MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM,
Additional pre-authentication required
Jan 02 22:52:49 opensolarismiten krb5kdc[1158](info): preauth
(timestamp) verify failure: Decrypt integrity check failed
Jan 02 22:52:49 opensolarismiten krb5kdc[1158](info): AS_REQ (6 etypes
{18 17 16 23 3 1}) 192.168.1.3: PREAUTH_FAILED:
mitenm at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM for krbtgt/
MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM at MEHTA.GHATKOPAR.MUMBAI.MH.IN.COM,
Decrypt integrity check failed
~


Please advise.

Regards,

Miten.
imiten at yahoo.com