Kerberos - Squid - Server SPN - klist output is confusing me
Stefan Bauer
stefan.bauer at cubewerk.de
Wed Nov 10 16:17:47 EST 2010
Dear Users,
i just setup kerberos with squid to authenticate proxy-users against
windows 2008 Servers AD.
I added a user to the AD and set a SPN of
HTTP/proxyserver.domain.com for it.
If i now try to access a webpage through squid from the DC-machine
itself - klist shows:
#1> Client: sbauer @ DOMAIN.COM
Server: HTTP/proxyserver.domain.com @ DOMAIN.COM
and it works.
For unknown reasons and here i really appreciate your knowledge on
any other clients the klist output looks like ...
#1> Client: sbauer @ DOMAIN.COM
Server: proxyuser @ DOMAIN.COM
and it does not work!
The user in AD is called proxyuser where the SPN also belongs to.
Ideas?
thanks in advance!
--
Stefan Bauer -----------------------------------------
PGP: 36D1 1570 DCAD B767 EABE F60D 6BCA 7AD4 79EB C4EC
-------- plzk.de - Linux - because it works ----------
More information about the Kerberos
mailing list