Stack Exchange Network

Stack Exchange network consists of 174 Q&A communities including Stack Overflow, the largest, most trusted online community for developers to learn, share their knowledge, and build their careers.

Visit Stack Exchange

Kerberos is a computer network authentication protocol which allows nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

-1
votes
0answers
7 views

Same name in 2 different DNS names with appropriate suffixes

We have a multi-domain structure with separate 3rd party DNS solutions. In a certain domain, we have a domain controller for that domain listed with its appropriate suffix. However, in another domain, ...
0
votes
0answers
8 views

stop Kerberos from raising errors

I use Kerberos only occasionally, but it is constantly raising "Matching credential not found" errors, regardless of whether I have any application using Kerberos tickets. Is there a way to tell ...
0
votes
0answers
23 views

Having Issues with the Kadmin being locked out and Active Directory in linux ftp and Kerberos

So I have a Linux FTP site that I am configuring, and I am picking up where a previous colleague of mine left off. The Ftp supposedly has Active Directory login, which seems to work for certain users ...
0
votes
0answers
12 views

Printing to smb with kerberos auth?

I want to set up a printer via linux samba client to a Windows printserver. I managed to do it specifying this connection string: smb://user:pass@printserver/printer Is there a way to do auth ...
0
votes
0answers
42 views

What is the difference between headless, service and user Kerberos keytabs

I often work on Kerberised Hadoop clusters, and have to use a variety of keytabs, such as: hbase.headless.keytab hbase.service.keytab devuser.keytab I'm not entirely clear on exactly what the ...
0
votes
0answers
31 views

Enabling AES128_HMAC_SHA1 encryption method restricts local users from changing password - Bug?

I am facing this issues recently, Whenever I enable the AES128_HMAC_SHA1 encryption method for Kerberos in gpedit(path), We are not able to change the local user password via crtl+alt+del screen ...
0
votes
0answers
25 views

IPA RHEL7 AD - can't ssh with AD account to IPA host

No matter how hard I try, I can't connect to IPA using a Windows account in AD - I did what https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/...
0
votes
0answers
36 views

Add multiple Service Principal Name to Keytab file on Windows

What command can I run on windows to add a SPN to a keytab file on Windows? It seems all the documentation I can find is for linux. I want to have multiple SPNs in one keytab file.
0
votes
1answer
153 views

ssh with kerberos ticket

When I log in to a server using OpenSSH, generated the Kerberos ticket on the /tmp/krb5cc_. 1 - how to generate this ticket and where is the conf file to create this ticket? 2 - How to generate the ...
0
votes
0answers
134 views

Can't connect to SSH using Kerberos in Mac OS 10.12

My mac is joined to my AD and i'd like to connect my Linux servers using SSH kerberos auth. It doesn't work and gives me that error : ssh -k -v alex@jeedom OpenSSH_7.5p1, OpenSSL 1.0.2n 7 Dec 2017 ...
0
votes
0answers
243 views

Kerberos and NTLM authentication

Q1) How do I force Windows 7 client to always use Kerberos authentication protocol talking to other machines on network irrespective of whether using host name or IP address? Q2) Similarly, how do I ...
0
votes
1answer
252 views

Apache and Kerberos SSO with multiple vhosts and multiple SPNs

I would like to do single sign-on of a website in my windows box. I am using the Kerberos Authentication module of apache. This is working pretty fine when having just one web site. This is the ...
0
votes
1answer
70 views

Ubuntu user does not exist probably due to kerberos issue

I often run out of space in my file system with Ubuntu 16.04. This time after I have got the error that no space left in my drive, I have started to delete some old files. However, some errors kept ...
0
votes
1answer
58 views

Single-sign-on in DMZ / OpenLDAP

we have a dmz with several https-based services, which users from internal network use although as users from outside. To ensure authentification with the active directory user-credentials, we set up ...
0
votes
0answers
120 views

Enable auto kinit for local user

Is there a way to enable auto kinit while doing a console or ssh login (login using password, not passwordless ssh)? As of now, if do, su - username and kinit I get a valid token created. But how do ...

15 30 50 per page