On 6/19/2011 8:55 PM, Mark Davies wrote:
On Mon, 20 Jun 2011, Douglas E. Engert wrote:
How does one check in AD? and change it if it is?
Check the userAccountControl attribute of the cross realm TGT
look for USE_DES_KEY_ONLY = 2097152, i.e. 0x20
http://support.microsoft.com/kb/305144
Hi, I'm new to using Kerberos and I'm definitely not a security expert, and I
tried searching for this but it's pretty difficult since most of the hits are
about people trying to get Kerberos working, so here goes...
If I do kinit notauser to my KDC, it replies instantly with:
kinit: Client
I have a bit problem with this:
I have home folders stored on an Solaris NFS server which is shared with
nfs4 and krb5p.
The users email is stored in Maildir folders in ~ for every user and the
postfix server is separate from the NFS one.
My problem is i havent figured out yet how to give
Date:Sat, 18 Jun 2011 01:29:38 PDT
To: kerberos@mit.edu
From:checker chec...@d6.com
Subject: CLIENT_NOT_FOUND reply to kinit a security vulnerability?
Hi, I'm new to using Kerberos and I'm definitely not a security expert, and I
t
ried searching for this but it's pretty
On Tue, 21 Jun 2011, Douglas E. Engert wrote:
OK, AD does not store the krbtgt as a principal, but this artical
on setting up trust might help.
Thanks, that was the piece I was missing.
cheers
mark
Kerberos mailing list