I'm trying to configure kerberos sso in apache at the moment. On the test server the website sub.internal.local workes quite well in reference to the kerb sso. When I try to adopt the config to another apache server, which is opend via sub.external.com I only get a log in dialogue.
So just for my understanding, what do I need to change in the krb5.conf file or the generating of the *.keytab file?
internal.local is our internal active directory domain;
external.com is our default webaddress from the outside, which also works internally because of an internal DNS-lookup zone;