On 22 September 2010 05:28, Christopher D. Clausen <cclau...@acm.org> wrote:
> I'm guessing you need to enable single DES encryption types on the KDCs, the
> web server and the clients.
>
> You should look into the allow_weak_crypto = true in the [libdefaults]
> section of krb5.conf
Will surely try.
The principal was created using:
ank -pw password -e rc4-hmac:normal host/minimepc.m.domain.com
For all account it seemed to work properly, by that I mean I see no
authentication error in the kdc logs.
I did see:
Sep 22 05:43:06 m.domain.com krb5kdc[68](info): AS_REQ (7 etypes {18
17 16 23 1 3 2}) 60.242.X.X: NEEDED_PREAUTH:
jeanyves_aven...@m.domain.com for krbtgt/m.domain....@m.domain.com,
Additional pre-authentication required
followed by proper authentication after
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
