Thanks. Setting KRB5_CLIENT_KTNAME and setting KRB5CCNAME to a none default
location resolve the issue.
-Original Message-
From: Greg Hudson [mailto:ghud...@mit.edu]
Sent: Monday, October 27, 2014 11:21 AM
To: Xie, Hugh;
Subject: Re: gss_init_sec_context with delegated_cred_handle error
On 10/23/2014 11:38 AM, Xie, Hugh wrote:
> When I pass GSS_C_NO_CREDENTIAL as cred_handle to gss_init_sec_context(), I
> got no error. But when I pass delegated_cred_handle (output from
> gss_accept_sec_context) as cred_handle to gss_init_sec_context(), I got
> 'Matching credential not found' er
I think the delegated_cred_handle output from gss_accept_sec_context, has
principal in lower case. When delegated_cred_handle passed to
gss_init_sec_context the default principal of the krbtgt is in upper case
causing the "Matching credential not found" error. Can I report this as a bug?