One more question, does kinit work on the solaris box? when you type kinit HTTP/<fully qualified domain name of your cas server> do you get the prompt for the user password and when you supply the password, it should successfully complete. You then use klist to take a look at your keys to see if the new user principal is listed. If this is the case you have kerberos set up correctly on the solaris box and it is validating against your Active Directory.
my only other guess is that your active directory user is not configured correctly. Wish I could be of more help Dean -- View this message in context: http://n4.nabble.com/CAS-SPNEGO-authentication-always-right-with-IE-tp1568991p1679591.html Sent from the CAS Users mailing list archive at Nabble.com. -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-user
