It's not one of yours. It's from MS.
http://www.microsoft.com/windows2000/techinfo/planning/security/kerbsteps.as
p.
I wish I could use the MIT KDC but can't.
> gss-server asample/win_nt4.kerberos.com
Still not working.
MS really doesn't seem to provide a way to debug this type of thing. Ktpa
itz [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 01, 2002 1:27 AM
To: [EMAIL PROTECTED]
Subject: Re: windows gss-api
"Rick" <[EMAIL PROTECTED]> writes:
>> ktpass -princ [EMAIL PROTECTED] -mapuser
>> user1 -pass pass1 -out krb5.keytab
>>
>> gss-server asa
"Rick" <[EMAIL PROTECTED]> writes:
>> ktpass -princ [EMAIL PROTECTED] -mapuser user1 -pass
>> pass1 -out krb5.keytab
>>
>> gss-server asample
>> GSS-API error acquiring credentials: Miscellaneous failure
>> GSS-API error acquiring credentials: No principal in keytab matches desired
>> name
You
On the Windows KDC (in AD) I created the following -users- with the same
passwords:
user1
asample <- service principal
win_nt4 <- client machine hostname
I also created a computer account and DNS entry for win_nt4 in AD.
then
ktpass -princ [EMAIL PROTECTED] -mapuser user1 -pass
pass1 -out k
