2008/11/10 Gerald (Jerry) Carter <[EMAIL PROTECTED]>:
> You can only get a TGT using either the UPN or the
> sAMAccountName. Machine accounts have no UPN by default.
> My guess is that this is the root of your troubles.
Hello Jerry,
I think I already have a TGT, klist says that I have a TGT name
I'm having a problem with kadmin not doing what klist says should work.
klist will show my keytab file (with minus k), but when I try and use
a principal in that keytab with kinit, I get an error:
kinit(v5): Client not found in Kerberos database while getting
initial credentials
I setup both the
s, that obviously, windows clients know
>> what the objects in the LDAP mean and so display them properly in Network
>> Places or whatever.
>> On Nov 7, 2008, at 12:17 PM, degbert degbert wrote:
>>
>>> Hello,
>>>
>>> Sorry for two messages, but I th
Hello,
Sorry for two messages, but I thought it would make more sense to use one
message per question.
Why do so many (but not all) AD howtos mention LDAP? Without configuring
LDAP I can use getent passwd or getent group to see the users in the AD.
Is there a benefit to also editing nsswitch to
Hello,
Everything looks like it is working fine. I get no errors, I can use
kinit, net ads join works, wbinfo and co. work perfectly. The AD sees
the computer added, the dns and reverse dns entries are created. Login
via ssh even works with the AD users (but not with SSO).
To make that work, I ne