[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Windows password changing with Heimdal KDC

To: heimdal-discuss@sics.se
Subject: Windows password changing with Heimdal KDC
From: Jason Garman <jgarman@wedgie.org>
Date: Wed, 27 Mar 2002 13:46:50 -0500
Reply-To: jgarman@wedgie.org
Sender: owner-heimdal-discuss@sics.se

I managed to get Heimdal to serve Windows 2000 client authentication.
I also was able to get password changing in Windows 2000 to work however
it seems now it no longer works... I get an error 1326: Unknown username
or incorrect password from Windows.

Before this used to work -- but I had another issue -- which was that if a
password was rejected at the KDC, it would give ridiculous numbers (ie.
your password must have at least 36,000 characters and not repeat your
last 8,000 passwords)

Has anyone tried this?  I also had to tweak options in the kadmin/changepw
principal -- taking out disallow-renew and disallow-forwardable -- is
there some major security issue with this?

Speaking of security... I asked this question before but received no
response... is there a way to get preauthentication to work with Windows
clients?

All of this is on Heimdal 0.4e (Linux)

Thanks
-- 
Jason Garman / jgarman@wedgie.org

Prev by Date: Re: instructions for SIA module on Tru64 5.1?
Next by Date: pam_krb5 under NetBSD
Prev by thread: Re: instructions for SIA module on Tru64 5.1?
Next by thread: pam_krb5 under NetBSD
Index(es):
- Date
- Thread