Problem with stand-alone Windows 2003 client authenticating to MIT KDC
Sean M. Pappalardo
spappalardo at renegadetech.com
Tue Apr 16 17:38:21 EDT 2013
Hello again.
I've just gone a round with Microsoft's paid support and their current
final answer is that "some MIT Kerberos versions are incompatible with
Windows Server 2003." When I asked which, they couldn't tell me, which
indicates that this is a cop-out.
So Kerberos gurus, you are my only remaining hope!
In a nutshell, Windows Server 2003 R2's built-in Kerberos client does
not seem to accept tickets from a Kerberos V5 1.10 KDC. The only strange
thing I found is that the client time in the ticket is corrupt (which
might cause the problem since it's not within acceptable limits.)
Windows Server 2008 R2 works correctly, as does the MIT Kerberos for
Windows client running on Server 2003.
Details here:
http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/a3eb5e24-81a6-4346-bff7-cb5c4f74a213
Please let me know if anyone has any ideas, no matter how elementary!
Sincerely,
Sean M. Pappalardo
Sr. Networks Engineer
Renegade Technologies
spappalardo at renegadetech.com
Office: (630) 631-6188
http://www.renegadetech.com
--
This communication, along with any documents, files or attachments, is
intended only for the use of the addressee and may contain confidential
information. If you are not the intended recipient, you are hereby
notified that any dissemination, distribution or copying of any
information contained in or attached to this communication is strictly
prohibited.
If you have received this message in error, please notify the sender
immediately and destroy the original communication and its attachments
without reading, printing or saving in any manner.
More information about the Kerberos
mailing list