[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Preauthentication failed

To: <heimdal-discuss@sics.se>
Subject: Re: Preauthentication failed
From: "Markus Moeller" <huaraz@moeller.plus.com>
Date: Thu, 24 May 2007 20:10:44 +0100
List-Archive: <http://list.sics.se/sympa/arc/heimdal-discuss>
List-Help: <mailto:sympa@sics.se?subject=help>
List-Id: <heimdal-discuss.sics.se>
List-Owner: <mailto:heimdal-discuss-request@sics.se>
List-Post: <mailto:heimdal-discuss@sics.se>
List-Subscribe: <mailto:sympa@sics.se?subject=subscribe%20heimdal-discuss>
List-Unsubscribe: <mailto:sympa@sics.se?subject=unsubscribe%20heimdal-discuss>
References: <f2c7lj$47d$1@sea.gmane.org> <20070515121828.f8249759.mba2000@ioplex.com> <f2l6so$ke1$1@sea.gmane.org> <20070518194930.bc3a2876.mba2000@ioplex.com> <f2v59p$apf$1@sea.gmane.org> <151901c79cac$485e3530$0801a8c0@home> <20070522170553.b827fece.mba2000@ioplex.com> <15b601c79cb9$33153860$0801a8c0@home> <20070522180659.9a7266dd.mba2000@ioplex.com> <f346jg$hp3$2@sea.gmane.org>
Reply-To: heimdal-discuss@sics.se, "Markus Moeller" <huaraz@moeller.plus.com>

I agree with Michaels suggestion on this.

Markus

----- Original Message ----- 
From: "Florian Erfurth" <floh-erfurth@arcor.de>
To: <heimdal-discuss@sics.se>
Sent: Thursday, May 24, 2007 3:05 PM
Subject: Re: Preauthentication failed


> Michael B Allen wrote:
>
>> Hi Markus,
>>
>> On Tue, 22 May 2007 22:36:02 +0100
>> "Markus Moeller" <huaraz@moeller.plus.com> wrote:
>>
>>> From my experience Computer accounts are fine and we prefer them as user
>>> accounts have (in our environment) a password expiry which otherwise
>>> would mean exception for users with a service principal or the keytab
>>> will get invalid.
>>
>> Ahh, interesting. I didn't think Computer accounts differed in this
>> respect. In fact it was my guess that Computer account password policy
>> was maybe hardcoded to expire reasoning that computers routinely change
>> their account password. But perhaps a Computer account for services would
>> be better.
> [snip]
> So should I try with user-account then or not?
>
> cu Floh
>
>

References:
- Preauthentication failed
  - From: Florian Erfurth <floh-erfurth@arcor.de>
- Re: Preauthentication failed
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Preauthentication failed
  - From: Florian Erfurth <floh-erfurth@arcor.de>
- Re: Preauthentication failed
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Preauthentication failed
  - From: Florian Erfurth <floh-erfurth@arcor.de>
- Re: Preauthentication failed
  - From: "Markus Moeller" <huaraz@moeller.plus.com>
- Re: Preauthentication failed
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Preauthentication failed
  - From: "Markus Moeller" <huaraz@moeller.plus.com>
- Re: Preauthentication failed
  - From: Michael B Allen <mba2000@ioplex.com>
- Re: Preauthentication failed
  - From: Florian Erfurth <floh-erfurth@arcor.de>

Prev by Date: Re: Preauthentication failed
Next by Date: awards winning
Prev by thread: Re: Preauthentication failed
Next by thread: windows XP caching kerberos tickets
Index(es):
- Date
- Thread