On Apr 10, 2006, at 8:40 PM, Russ Allbery wrote: > > This is a pure shot in the dark, but I've discovered that Heimdal can > apparently read keytabs with des-cbc-crc keys in them but cannot > actually > use them for any operation that involves iterating through the > keytab (as > opposed to matching an existing known key with something in the > keytab, > which is what's done for verification of remote authenticators) > unless you > explicitly list des-cbc-crc in default_etypes. > > I don't have any good explanation for this behavior, and I'm not > sure what > versions of Heimdal it applies to, but I ran into it with a 0.7 > release. >
Well, I was using des-cbc-md5, but I suspect the same applies. Once I switched to the hoopiest enctype, everything worked. Isn't des-cbc-crc deprecated? It's not supported in the version we use. _ Booker C. Bense ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
