[32482] in Kerberos
Configuring Alfresco ECM to authenticate to a MIT Kerberos
daemon@ATHENA.MIT.EDU (Davide Cerbo)
Mon Jul 5 13:32:08 2010
MIME-Version: 1.0
From: Davide Cerbo <davide.cerbo@exmachina.ch>
Date: Mon, 5 Jul 2010 19:31:44 +0200
Message-ID: <AANLkTinYU6s0NkgJ3t1jitVao3H8xxFsaSNtBGK6qIJb@mail.gmail.com>
To: kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
Hi all,
I'm trying to configure Alfresco to authenticate to a MIT Kerberos
Server, but unfortunately all documentation regards Active Directory
:(
This is the page on Alfresco Wiki that describe how configure Kerberos:
http://wiki.alfresco.com/wiki/Alfresco_Authentication_Subsystems#Kerberos
Active Directory command:
ktpass -princ cifs/<cifs-server-name>.<domain>@<realm> -pass
<password> -mapuser <domainnetbios>\alfrescocifs -crypto RC4-HMAC-NT
-ptype KRB5_NT_PRINCIPAL -out c:\temp\alfrescocifs.keytab
setspn -a cifs/<cifs-server-name> alfrescocifs
setspn -a cifs/<cifs-server-name>.<domain> alfrescocifs
Our MIT Kerberos translation:
addprinc -e "rc4-hmac:normal" cifs/host.domain@REALM
ktadd -k alfrescocifs.keytab cifs/host.domain@REALM
addprinc alfrescocifs
When I try to login using CIFS I receive following exception:
GSSException: Failure unspecified at GSS-API level (Mechanism level:
Incorrect checksum)
More information about can be found on my other post on Alfresco Forum:
http://forums.alfresco.com/en/viewtopic.php?f=9&t=27838
If someone wants to know other information or what I tried please contact us.
thanks in advance,
Davide
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
