Kerberos fails with Windows Server 2008 R2 RODC - assistance appreciated in backporting patch
Greg Hudson
ghudson at MIT.EDU
Mon Mar 7 11:46:22 EST 2011
On Fri, 2011-03-04 at 02:58 -0500, Jonathan Thorpe wrote:
> Looking at how dramatically different the 1.6 and 1.9 branches are,
> I'm not confident enough to backport this patch myself, however I was
> hoping someone might be able to help with a patch for the 1.6 releases
> that Debian is currently shipping?
Untested:
Index: get_in_tkt.c
===================================================================
--- get_in_tkt.c (revision 23380)
+++ get_in_tkt.c (working copy)
@@ -1020,6 +1020,7 @@
request.client->realm.data,
0)))
goto cleanup;
+ request.server->type = KRB5_NT_SRV_INST;
}
krb5_preauth_request_context_init(context);
This doesn't handle the case where the caller specifies an
in_tkt_service of "krbtgt/something", but that case is rare.
More information about the Kerberos
mailing list