Hi, I'm trying out KdcConnection using Microsoft Active Directory as KDC.
On getTgt, I first get KRB5KRB_ERR_PREAUTH_REQUIRED. KdcConnection retries with a PaEncTsEnc added to the request. The response to this second request is KDC_ERR_PREAUTH_FAILED. Any idea why that would happen? My understanding is that pre authentication involves encrypting a hash of the current timestamp. Any reason this could fail when talking to AD? Thanks, Eirik.
