[Samba] Obtaining TGT using service principal name
Andrew Bartlett
abartlet at samba.org
Mon Feb 3 20:45:24 MST 2014
On Mon, 2014-02-03 at 21:36 -0500, Bobby Kirchgessner wrote:
> Thank you for the quick response.
>
>
> I see, so net ads join creates a machine principal automatically?
Yes.
> I thought that it might, but it appears that FreeNAS tries to net ads
> join / net ads leave every time the services start and stop, so I am
> not sure how it could do that without storing the administrator
> password.
This would be a serious flaw in FreeNAS. If you can reproduce this, see
if you can talk to them about it. If that doesn't work out, I'll see
what I can do to assist them to never do that. I've worked with them on
other issues before.
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba
mailing list