[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Heimdal/WIndows Server 2003 authentication

To: Heimdal Discussion <heimdal-discuss@sics.se>
Subject: Heimdal/WIndows Server 2003 authentication
From: T C <tccheung1@gmail.com>
Date: Fri, 23 Sep 2005 14:19:12 -0700
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type; b=SlEh6xIGeVll+2zLjprYPwC9i0ZvQtNkNb3aLT2Dp3YZriuujiT6E3iqjWNsdrJqF73aniXPIN72ajdJkZQUewc2VpKgM5pi0gCCQxmiX50TT6lZvH7rD2eOyjU6q9A8jch9NTA+p21lhEi5dQTvvyR/gxAfpsQJ/+r2cmGtCl0=
Reply-To: T C <tccheung1@gmail.com>
Sender: owner-heimdal-discuss@sics.se

Hi,

I am working with a Unix service and a Windows client. They are all under the same
Active Directory realm. The service is using the heimdal library.

Right now the server can authenticate the client, but the client asks for mutual-auth,
and it's not able to complete the kerberos process. What's left after the server
authenticates the client? The server sends back an authenticator. So my
guess is there maybe a problem with the authenticator. Is there anything
in the configuration that I need to set in order to get this compatible with
Microsoft kerberos?

BTW, I am using DES-CBC-MD5 for the session key.

Thanks,
Terry

Prev by Date: Re: Cross Realm HELP
Next by Date: [SAMBA4][PATCH] Add hooks to take over KDC socket routines
Prev by thread: Re: [PATCH] Should we avoid DNS for short names?
Next by thread: [SAMBA4][PATCH] Add hooks to take over KDC socket routines
Index(es):
- Date
- Thread