[32874] in Kerberos
Kerberos - Squid - Server SPN - klist output is confusing me
daemon@ATHENA.MIT.EDU (Stefan Bauer)
Wed Nov 10 16:20:23 2010
Message-ID: <4CDB0BFB.0@cubewerk.de>
Date: Wed, 10 Nov 2010 22:17:47 +0100
From: Stefan Bauer <stefan.bauer@cubewerk.de>
MIME-Version: 1.0
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Dear Users,
i just setup kerberos with squid to authenticate proxy-users against
windows 2008 Servers AD.
I added a user to the AD and set a SPN of
HTTP/proxyserver.domain.com for it.
If i now try to access a webpage through squid from the DC-machine
itself - klist shows:
#1> Client: sbauer @ DOMAIN.COM
Server: HTTP/proxyserver.domain.com @ DOMAIN.COM
and it works.
For unknown reasons and here i really appreciate your knowledge on
any other clients the klist output looks like ...
#1> Client: sbauer @ DOMAIN.COM
Server: proxyuser @ DOMAIN.COM
and it does not work!
The user in AD is called proxyuser where the SPN also belongs to.
Ideas?
thanks in advance!
--
Stefan Bauer -----------------------------------------
PGP: 36D1 1570 DCAD B767 EABE F60D 6BCA 7AD4 79EB C4EC
-------- plzk.de - Linux - because it works ----------
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
