FW: [win2000-hied]: W2k Kerberos pass-through logons and pre-authentication

Paul B. Hill pbh at MIT.EDU
Thu Sep 12 11:52:00 EDT 2002


I thought this group might be able to reply, or some might be interested.

-----Original Message-----
From: owner-win2000-hied at lists.Stanford.EDU
[mailto:owner-win2000-hied at lists.Stanford.EDU]On Behalf Of Detlefs,
Sent: Thursday, September 12, 2002 11:08 AM
To: win2000-hied at lists.Stanford.EDU
Subject: [win2000-hied]: W2k Kerberos pass-through logons and

I've conducted a few simple tests to determine if Windows 2000
pass-through authentication to an MIT Kerberos realm is compatible with
the Kerberos K5 pre-authentication option.  My results indicate that
Windows 2000 pass-through is *not* compatible with pre-authenticaiton,
but that Windows XP *is* compatible, both for clients with real IP
addresses and those behind a NAT.

Can anyone else confirm these results?


Dave Detlefs
ITCS LAN/NOS Groupware
University of Michigan
dhd at umich.edu
This message was posted through the Stanford campus mailing list
server.  If you wish to unsubscribe from this mailing list, send the
message body of "unsubscribe win2000-hied" to majordomo at lists.stanford.edu

More information about the krbdev mailing list