On Wed, May 21, 2008 at 7:56 PM, Michael Ströder <[EMAIL PROTECTED]> wrote: > AndrePra wrote: >> >> I suggest only to add the /mapuser parameter to ktpass command in the wiki . >> Active Directory 2003 didn't recognize properly the user to be mapped to >> service.
You may have missed it while this command as always been and still is in the wiki (and even in the old docbook that we used before switching to the wiki) I am glad to see that it is finally working :-) > One should always check (e.g. via LDAP query) whether attribute > 'servicePrincipalName' of the CAS service account is properly set (e.g. > to 'HTTP/[EMAIL PROTECTED]'. That's effectively a good way to check that the job has been made with ktpass.exe or setspn.exe -- Arnaud Lesueur LinkedIn: http://www.linkedin.com/in/lesueur _______________________________________________ Yale CAS mailing list [email protected] http://tp.its.yale.edu/mailman/listinfo/cas
