[Samba] Printserver after latest MS updates
Christian Naumer
cn at brain-biotech.de
Mon Oct 25 14:30:55 UTC 2021
Am 25.10.21 um 16:03 schrieb Achim Gottinger via samba:
> Indeed, which raises the quetion can kerberos be used with local account?
> Quick web search showed there is an kinit Utility coming with Sun/Oracle Java JDK.
> I can kinit successfull klists shows a valid ticket but if I connect to the samba server I'm asked for credentials again. Log shows failed NTLMv2 password.
> Same with heimdal kerberos client and secure endpoints network identity manager.
As far as I understood it. Non Domain joined clients can connect to
resources on the Domain if you connect using domainuser credentials.
However, NTLM not Kerberos is used then. If you block NTLM then non
Domain joined clients will stop to work.
This all seems related...
As for Kerberos. I use non domain joined client (Linux though) where I
just configured the krb5.conf and I can then "kinit" and use my domain
credentials to connect to server using krb auth with ssh.
I haven't tried with windows.
Regards
Christian
--
Dr. Christian Naumer
Vice President
Unit Head Bioprocess Development
BRAIN Biotech AG
Darmstaedter Str. 34-36, D-64673 Zwingenberg
e-mail cn at brain-biotech.com, homepage www.brain-biotech.com
phone +49-6251-9331-30 / fax +49-6251-9331-11
Sitz der Gesellschaft: Zwingenberg/Bergstrasse
Registergericht AG Darmstadt, HRB 24758
Vorstand: Adriaan Moelker (Vorstandsvorsitzender),
Lukas Linnig
Aufsichtsratsvorsitzender: Dr. Georg Kellinghusen
More information about the samba
mailing list