[Samba] AD + Double Hop + Kerberos Delegation
A H
a.hassle.spam at gmail.com
Wed Jul 20 07:55:35 MDT 2011
I know my AD integration is working to the file share because it works
directly from the Windows box. The problem only shows up while trying to do
the double hop to the file share.
So I'm just curious if Samba can handle the delegated kerberos tickets in
version 3.4.5? Or if this functionality is only in Samba4?
Thanks,
AH
On Tue, Jul 19, 2011 at 9:53 AM, A H <a.hassle.spam at gmail.com> wrote:
> Hello all,
>
> I am running v3.4.5 of Samba. Does this version support double hop
> kerberos authentication? I turned the log level up to 3 and found that it
> is passing only the hostname. This leads me to believe that the double hop
> part is not working.
>
> I did read that it is supposed to work in Samba4 via
> http://lists.samba.org/archive/samba-technical/2005-November/043912.html
> but wasn't sure about the original Samba.
>
> There is a HOSTS SPN for the linux box. I do have the HOSTS SPN added to
> the AD account as needed. I have set up other kerberos delegations before
> (all within Windows environments) without a lot of problems.
>
> Thanks,
> AH
>
More information about the samba
mailing list