[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: pkinit patch for heimdalv0.5 with windows 2000 server

To: nprasad@embeddedinfotech.com
Subject: Re: pkinit patch for heimdalv0.5 with windows 2000 server
From: Love <lha@stacken.kth.se>
Date: Sun, 14 Dec 2003 18:14:29 +0100
Cc: heimdal-discuss@sics.se
In-Reply-To: <2571.192.168.1.60.1071215365.squirrel@cvs> (nprasad@embeddedinfotech.com'smessage of "Fri, 12 Dec 2003 13:19:25 +0530 (IST)")
References: <2571.192.168.1.60.1071215365.squirrel@cvs>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.1002 (Gnus v5.10.2) Emacs/21.3 (berkeley-unix)


nprasad@embeddedinfotech.com writes:

> Hi
>       I was trying out the pkinit patch from
> http://meta.cesnet.cz/software/heimdal/pkinit.en.html
> The patch works perfectly fine when tested with heimdal kdc
> however i have problems with windows 2000 server's kdc
> i get the error
> "kinit: krb5_get_init_creds: KDC has no support for padata type"

I get this error when I don't specify the principal (and kinit then the
default realm, that isn't the w2k ad/realm)

I still have to get it to work, I get 

	$ ./kinit -C ~/lha.cer -K ~/lha.key -D /M/M-CA lha@M.L.NXS.SE
	Enter your private key passphrase: 
	kinit: krb5_get_init_creds: Client not trusted

It seems to right in the Name mappings thingy, guess I need to turn on some
kdc logging.

Love

PGP signature

References:
- pkinit patch for heimdalv0.5 with windows 2000 server
  - From: nprasad@embeddedinfotech.com

Prev by Date: Re: null subfields
Next by Date: Re: null subfields
Prev by thread: pkinit patch for heimdalv0.5 with windows 2000 server
Next by thread: build problems, snapshot 2003-12-13
Index(es):
- Date
- Thread