[PATCH] heimdal fixes for the new keytab code
Jean-Baptiste Marchand
Jean-Baptiste.Marchand at hsc.fr
Mon Jul 26 14:11:57 GMT 2004
* Gerald (Jerry) Carter <jerry at samba.org> [01/01/70 - 01:00]:
> The DC for the domain only has
>
> servicePrincipalName: DNS/spud.ad.plainjoe.org
> servicePrincipalName: HOST/spud.ad.plainjoe.org/AD
> servicePrincipalName: HOST/SPUD
> servicePrincipalName: HOST/spud.ad.plainjoe.org
> servicePrincipalName: HOST/spud.ad.plainjoe.org/ad.plainjoe.org
> servicePrincipalName: GC/spud.ad.plainjoe.org/ad.plainjoe.org
> servicePrincipalName:
> LDAP/b4adf850-defa-4267-8d18-e52d274dd979._msdcs.ad.plai
> ~ njoe.org
> servicePrincipalName: LDAP/spud.ad.plainjoe.org/AD
> servicePrincipalName: LDAP/SPUD
> servicePrincipalName: LDAP/spud.ad.plainjoe.org
> servicePrincipalName: LDAP/spud.ad.plainjoe.org/ad.plainjoe.org
> servicePrincipalName:
> NtFrs-88f5d2bd-b646-11d2-a6d3-00c04fc9b232/spud.ad.plain
> ~ joe.org
> servicePrincipalName:
> E3514235-4B06-11D1-AB04-00C04FC2DCD2/b4adf850-defa-4267-
> ~ 8d18-e52d274dd979/ad.plainjoe.org
>
> Where does the CIFS/...entry come into play ?
>
> (jerry heads off to search msdn)....
This was explained by Luke H. last year:
http://www.mail-archive.com/samba-technical@lists.samba.org/msg06073.html
Active Directory has a sPNMappings attribute that can be used to map a
SPN to another.
cifs (like many other names for typical win32 services) appears to be an
alternate name for the host SPN.
Jean-Baptiste Marchand
--
Jean-Baptiste.Marchand at hsc.fr
HSC - http://www.hsc.fr/
More information about the samba-technical
mailing list