[37989] in Kerberos
RE: Kerberos failed with krb5krb_AP_ERR_ BAD_INTEGRITY
daemon@ATHENA.MIT.EDU (Ashi1986)
Thu Jun 1 09:23:56 2017
Date: Thu, 1 Jun 2017 06:23:37 -0700 (MST)
From: Ashi1986 <vermaashish_mca@hotmail.com>
To: kerberos@mit.edu
Message-ID: <1496323417202-47081.post@n3.nabble.com>
In-Reply-To: <68644224DA0DE64CA5A49838ED219A0425C101B3@DEFTHW99EJ5MSX.ww902.siemens.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
>>Consider using msktutil(1), it does a very good job with the Active
Directory.
After creating the keytab file by using the KTPASS command, keytab file is
added in BS2000 machine and connection test becomes successful for
encryption types RC4_HMAC_NT, AES128-SHA1, AES256-SHA1, DES_CBC_CRC and
DES_CBC_MD5.
But the connection test for encryption type DES_CBC_CRC and DES_CBC_MD5
becomes successful without adding the keytab file in BS2000.
can you please suggest what settings need to be done in order to perform the
connection test for encryption type RC4_HMAC_NT, AES128-SHA1 and AES256-SHA1
without adding the KEYTAB file in BS2000.
--
View this message in context: http://kerberos.996246.n3.nabble.com/Kerberos-failed-with-krb5krb-AP-ERR-BAD-INTEGRITY-tp46816p47081.html
Sent from the Kerberos - General mailing list archive at Nabble.com.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
