[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pkinit patch for heimdalv0.5 with windows 2000 server

nprasad@embeddedinfotech.com writes:

> Hi
>       I was trying out the pkinit patch from
> http://meta.cesnet.cz/software/heimdal/pkinit.en.html
> The patch works perfectly fine when tested with heimdal kdc
> however i have problems with windows 2000 server's kdc
> i get the error
> "kinit: krb5_get_init_creds: KDC has no support for padata type"

I get this error when I don't specify the principal (and kinit then the
default realm, that isn't the w2k ad/realm)

I still have to get it to work, I get 

	$ ./kinit -C ~/lha.cer -K ~/lha.key -D /M/M-CA lha@M.L.NXS.SE
	Enter your private key passphrase: 
	kinit: krb5_get_init_creds: Client not trusted

It seems to right in the Name mappings thingy, guess I need to turn on some
kdc logging.


PGP signature