[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Unable to change expired Kerberos passwords on Windows XP

To: heimdal-discuss@sics.se, kerberos@mit.edu
Subject: Unable to change expired Kerberos passwords on Windows XP
From: Priit Randla <priit.randla@eyp.ee>
Date: Fri, 25 Feb 2005 15:38:33 +0200
Organization: UBE
Sender: owner-heimdal-discuss@sics.se
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.3) Gecko/20040922


    Hello,

    I'm (actually, users are ;-)) having difficulties with Kerberos 
password expiery.
If the user's password expires, XP correctly sends them to the password 
change screen.
User then has to change his/her username to username@REALM (otherwise 
Windows
seems unable to contact KDC) and fill in old/new password fields.
Now the interesting part begins - if users username is all _lowercase_, 
password change
succeeds, login fails, next login succeeds.
If username contains any _uppercase_ letters, password change fails with 
error
'1326: Logon failure : unknown user name or bad password'
Password change with MIT or Heimdal clients works.
KDC log doesn't show anything bad, error is the same for both MIT and 
Heimdal KDC's.
Password change for those users works also on Windows, if the password 
isn't expired.

Regards,
Priit

Follow-Ups:
- Re: Unable to change expired Kerberos passwords on Windows XP
  - From: Dave Love <d.love@dl.ac.uk>

Prev by Date: Re: cross-realm difficulties
Next by Date: LDAP -> Heimdal -> LDAP
Prev by thread: Re: heimdal pkinit
Next by thread: Re: Unable to change expired Kerberos passwords on Windows XP
Index(es):
- Date
- Thread