I'm trying to setup a Cygwin instance running in Windows Server 2019, joined to a domain. OpenSSH Server is successfully installed in Cygwin and working with password method for AD Users. The goal is to enable GSSAPI for SSO login.
However Kerberos is not cooperating with me, and complaining about keytab file. A regular kinit for my user name works perfectly find and I can see the ticket.
The SSH Server debug output shows:
debug1: Unspecified GSS failure. Minor code may provide more information
Key table file '/etc/krb5.keytab' not found
My krb5.conf is pretty simple.
[libdefaults]
default_realm = DOMAIN.COM
fowardable = true
[realms]
DOMAIN.COM = {
kdc = DC1.DOMAIN.COM
default_domain = DOMAIN.COM
}
However I keep getting that error. I think my understanding of how this works is a bit off. I've also tried to generate a keytab file in Windows and putting it on the correct place, but no luck.
Any idea if what I'm doing is possible? The Windows Server running this Cygwin instance is already joined to domain.