On Tue, Nov 15, 2011 at 7:32 AM, Mark R Bannister <m...@proseconsulting.co.uk> wrote: >> I am guessing that this version of AD is implementing the behavior >> described in appendix A of the referrals draft. It wants to change the >> client-visible server name, and the way it does so is by returning a >> TGTto the same realm with a PA-SVR-REFERRAL-DATA entry in the encrypted >> padata. >> This should be easy enough to fix, since I have a test case in a local >> AD realm. If you are in a position to test a patch, I can furnish one; >> otherwise it should hit a 1.9 patch release at some point. > > Yes please Greg, happy to test a patch.
I have a user at my site who has reported an identical error today, using msktutil on CentOS 6. Is there a patch available? ________________________________________________ Kerberos mailing list Kerberos@mit.edu https://mailman.mit.edu/mailman/listinfo/kerberos
