some cross-realm trust questions

Victor Sudakov vas at
Wed Jan 26 11:00:34 EST 2011

I have been able to ssh from a Windows host (using Centrify PuTTY) to
a FreeBSD host using a cross-realm trust between a w2k domain and a
Heimdal realm. 

However, I had to manually configure the Windows host for this to
work: "ksetup /addkdc MY.UNIX.REALM server1 server2".

Do you know how I can avoid manually configuring every Windows host
before I can use the trust? The relevant _kerberos SRV records are
set up for the Unix domain, but somehow Windows wouldn't use the
information published in DNS.

TIA for any input.

Victor Sudakov,  VAS4-RIPE, VAS47-RIPN
2:5005/49 at fidonet

More information about the Kerberos mailing list