samba 3.0.4/linux spnego problem with w2003

Gerald (Jerry) Carter jerry at samba.org
Thu Jul 8 15:19:06 GMT 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Pitrich, Karl wrote:
| hi,
|
| i configured a samba 3.0.4 server to be a member server of a
| windows 2003 active directory domain.
|
| kerberos is configured properly, as kinit works and i am able to get a
| ticket for the domain users in ActiveDirectory, which also exist as
| local users without a password. (i can pam_krb-login against the AD
| domain)


At this point, these type sof kerberos question are not
really developer oriented.  And are better suited for the
general samba ml.

But since I'm here, make sure that you have a version of
the krb5 libs athat support the rc4-hmac enc-typee (23).

And search technet.microsoft.com for the KB article that
describe the 2003 bug where it will not honor the enc_type
requested by the client and always used rc4-hmac.


- --
cheers, jerry
- ----------------------------------------------------------------------
Hewlett-Packard            ------------------------- http://www.hp.com
SAMBA Team                 ---------------------- http://www.samba.org
GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
"...a hundred billion castaways looking for a home." ----------- Sting
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFA7WXqIR7qMdg1EfYRAhIDAKDJtoniA4iBZr3Yj8txljSxYN97hACbB31R
HNY8oH7/x3ToRUKDyH6gcIo=
=N5+Q
-----END PGP SIGNATURE-----


More information about the samba-technical mailing list