Re: Ubuntu Kerberos and Active Directory

Rohit Kumar Mehta <[EMAIL PROTECTED]> writes: > Hey guys, I did an "apt-get install libpam-krb5" which removed > libpam-heimdal, and the problem is now gone. (I reproduced the problem > in both Debian-etch and Ubuntu-dapper). I am guessing there is some > problem with the heimdal libs. Yeah, th

Re: kadmin ktadd -e keysaltlist for des-cbc-md5

"Tom Simons" <[EMAIL PROTECTED]> writes: > I'm trying to get a keytab with des-cbc-md5 encryption (no salt) from our > kerberos 1.5 realm for a CyberSafe client. How do I specify the ktadmin > ktadd command's "-e keysaltlist" parameter? I tried variations on "ktadd -k > -e ENCTYPE_DES_CBC_MD5:NON

dictionary password screening problem

Hi All- I'm having this weird issue that I'm hoping someone can shed some light on. I've got a dictionary file of words I want to keep from being used in passwords but I can't seem to get it to work. This is what's in my kdc.conf file: - [kdcdefaults] acl_file = /var/kerberos/krb5kdc/k

RE: kadmin ktadd -e keysaltlist for des-cbc-md5

Tom, Using MIT krb5 1.5.1, I tried this : kadmin.local: addprinc -randkey test/[EMAIL PROTECTED] WARNING: no policy specified for test/[EMAIL PROTECTED]; defaulting to no policy Principal "test/[EMAIL PROTECTED]" created. kadmin.local: ktadd -e DES-CBC-MD5:NORMAL test/princ Entry for principal

kadmin ktadd -e keysaltlist for des-cbc-md5

I'm trying to get a keytab with des-cbc-md5 encryption (no salt) from our kerberos 1.5 realm for a CyberSafe client. How do I specify the ktadmin ktadd command's "-e keysaltlist" parameter? I tried variations on "ktadd -k -e ENCTYPE_DES_CBC_MD5:NONE", but get the same error: kadmin: ktadd -

Re: Ubuntu Kerberos and Active Directory

Rohit Kumar Mehta wrote: > Hey guys, I did an "apt-get install libpam-krb5" which removed > libpam-heimdal, and the problem is now gone. (I reproduced the problem > in both Debian-etch and Ubuntu-dapper). I am guessing there > is some problem with the heimdal libs. > Now I can ssh to the m

AIX auth against W2k3 Active Directory

I have setup the KRB5A client on AIX and can successfully authenticate against my windows 2003 server Active directory. However, there is no mention of the login in the windows Event Log (ie: Event 528).I see successful logins from windows hosts, just not the AIX host. Do I need to enable

Re: Ubuntu Kerberos and Active Directory

Hey guys, I did an "apt-get install libpam-krb5" which removed libpam-heimdal, and the problem is now gone. (I reproduced the problem in both Debian-etch and Ubuntu-dapper). I am guessing there is some problem with the heimdal libs. Now I can ssh to the machine using Active Directory credenti