>> I have been having this problem for a long time now. I have a few questions >> on how you have configured it. >> >> 1) How did you create the service principal host/machine.domain.com@REALM in >> Windows 2000 KDC? > >I created it with OpenLDAP's ldapmodify after I joined the machine to the >domain. An LDIF like this should work:
Interesting. According to Microsoft documentation, the servicePrincipalName can never be modified over LDAP, only over RPC. -- Luke -- Luke Howard | PADL Software Pty Ltd | www.padl.com
