On Fri, Apr 04, 2008 at 10:21:20AM -0400, Leopold, Corey wrote: > > > > -----Original Message----- > > From: Nicolas Williams [mailto:[EMAIL PROTECTED] > > Sent: Thursday, April 03, 2008 5:38 PM > > To: Natalie Li > > Cc: Leopold, Corey; [email protected] > > Subject: Re: [storage-discuss] B85 CIFS - Active Directory - Kerberos > > > > On Thu, Apr 03, 2008 at 03:40:13PM -0700, Natalie Li wrote: > > > The smbadm CLI does create the computer account with > > > servicePrincipalName attribute. See the following output of the > > dsquery: > > > > But it didn't for me; did I do something wrong? Corey, what about > your > > case? > > Not there, I also checked a previous account created with b79a and not > on that one either. See full listing Below... > > I do have a secondary question though... Shouldn't CIFS shares also be > checking this host principal, and fail authentication if it is > non-existent? My understanding is that these keys prevent man in the > middle attacks?
They are using NTLM. _______________________________________________ storage-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/storage-discuss
