Anthony Brock <[EMAIL PROTECTED]> wrote: > I have created several cross-realm trusts on a test server. At this > point, nearly everything is working properly. However, users are > unable to change their passwords unless their account is in the > initial domain. Users see the following when attempting it from the > initial domain: > > # kpasswd > Password for [EMAIL PROTECTED]: > Enter new password: > Enter it again: > Password changed. > # > > Unfortunately, following happens for additional domains: > > # kpasswd > Password for [EMAIL PROTECTED]: > Enter new password: > Enter it again: > Authentication error: Failed reading application request > #
What happens if you run: kpasswd [EMAIL PROTECTED] and manually specify the realm name where the user account is at? so in your case, try running: kpasswd [EMAIL PROTECTED] on the above machine where you were prompted for [EMAIL PROTECTED] credentials. Additionally, are you behind a NAT when kpasswd fails? <<CDC ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos
