Douglas E. Engert
Wed, 14 Mar 2007 10:24:16 -0800
What version of PuTTY, with whose GSSAPI mods What does it have in the configure menu under SSH->AUTH Dies it have a Service realm(SSPI): entry? Sounds like it cache your old password, and dido a kinit under the covers using the old password? Can you do a Wireshark (or Ethereal) trace, and watch the Kerberos packets? Gustavo Rios wrote:
Dear gentleman, i have jsut setted up my kerberos server (using heimdal, of course). It is working perfectly. I can even log from a windows boxes authenticating by it, but ..... After performed log on on my windows boxes, i changed the user password. It worked 100%, i.e., kerberos password where changed, then a logged out my windows session and logged on again. 100% correct. My suprise was when i launched putty. I could log into my server directly as expected. But after changing password i got the following on putty screen: Using service principal name: "host/[EMAIL PROTECTED]@".
As Michael said, the last @ looks strange, but with SSPI, one of the calls does have <service>@<instance>@<realm>, which would have been [EMAIL PROTECTED]@MY.DOMAIN to get the principal host/[EMAIL PROTECTED]
SSPI Authentication Failed. Try specifying Service Principal Name. Using username "sioux". [EMAIL PROTECTED]'s password: Last login: Wed Mar 14 03:57:21 2007 from dsk-10.my.domain In Greene, New York, it is illegal to eat peanuts and walk backwards on the sidewalks when a concert is on. Now, i am having to log in using password. Does anybody face such problem before ? Thanks in advance.
-- Douglas E. Engert <[EMAIL PROTECTED]> Argonne National Laboratory 9700 South Cass Avenue Argonne, Illinois 60439 (630) 252-5444