Questions tagged [kerberos]

Kerberos is a computer network authentication protocol, which allows nodes communicating over a non-secure network to prove their identity to one another in a secure manner. Its designers aimed primarily at a client–server model, and it provides mutual authentication — both the user and the server verify each other's identity.

As many vendors have their own implementation of Kerberos, configuration details for each implementation is likely to vary. Here are some links that may help those troubleshooting Kerberos on commonly used paltforms.

RFC Kerberos - http://www.faqs.org/rfcs/rfc1510.html
Kerberos Blogs by AD support team at Microsoft - http://blogs.technet.com/b/askds/archive/tags/Kerberos/
Kerberos blogs by Open Specification team at Microsoft - http://blogs.msdn.com/b/openspecification/archive/tags/Kerberos/
Ubuntu Linux post on Kerberos - https://help.ubuntu.com/community/Kerberos

1136 questions

vote

0 answers

pwauth kerberos authentication specifying default and secondary servers

I am currently using Kerberos authentication for Basic Authentication on Apache using pwauth and mod_auth_external. I would like to add multiple servers to authenticate from, however they would have to specify the other servers similar to logging…

asked Nov 13 '14 at 23:14

ashin999

vote

0 answers

Apache auth_kerb_module on Windows

I need to install the Kerberos module in Apache on Windows. I have copied the file auth_kerb_mod.so to apache/modules/ and I have modified the conf/httpd.conf with LoadModule auth_kerb_module modules/auth_kerb_mod.so But I can't start the Apache…

apache-2.2 windows kerberos windows-server-2012-r2

asked Oct 22 '14 at 09:19

Samuel_

vote

0 answers

Postfix + Saslauthd + Kerberos 5 + CentOS 7 not working

I've almost got saslauthd checking against Kerberos but seeing some last issues on CentOS 7. When postfix talks to saslauthd, it sends a lowercased domain and it's not corrected. I tried to fix things in /etc/krb5.conf using [domain_realms] but…

centos postfix kerberos sasl saslauthd

asked Oct 13 '14 at 06:18

Brian Topping

vote

0 answers

kerberos apache 401 error for domain admins using office addin

I use SSO for access to a Linux based system from our windows 7 PC's. This works for IE using the logon credentials to access the system. However, when the developed office plugin is used by any member of the domain admin group it will not…

domain kerberos

asked Sep 08 '14 at 11:02

Justin Cooper-Marsh

vote

1 answer

Kerberos IE6 Windows 2000

Kerberos works on Windows XP with IE 7 and 8, but a client who is on Windows 2000 with IE 6 can not authenticate with Kerberos. The Windows Server 2003 shows authentication as NTLM. The web application is running on port 40000 with its own app…

windows iis authentication kerberos internet-explorer

asked Sep 03 '09 at 10:57

Antony Delaney

vote

1 answer

BCP/xp_cmdshell access denied - but only when running procedure from outside the server

I've been attempting to run some of my team's database deployment code to a SQL 2014 server on a Windows 7 test box. Part of this code is a procedure that pulls in data from a file using BCP from a file share on another server. When I remote desktop…

sql-server kerberos bcp

asked Jul 31 '14 at 11:58

Meric Stanley

vote

0 answers

Kerberos and SSH login

I've just configured a RHEL 7 for windows authentication (idmap_ad). Every check works but if i try to ssh with a domain user i get the error: Connection closed by ::1 Here follows the ssh log in debug mode: Jul 22 11:16:02 SERVER sshd[7720]:…

active-directory ssh redhat kerberos

asked Jul 22 '14 at 09:25

Alberto Tallone

vote

2 answers

IE HTTP Kerberos issues authenticating to site on FQDN not matching AD Domain

I have a site on a corporate domain that authenticates using Kerberos auto-login from IE and Chrome just fine, as long as the DNS being used to access it falls under the AD FQDN The AD domain is not a public domain, for this example, lets call it…

iis authentication kerberos integrated-authentication

asked Jul 18 '14 at 15:50

TheSoftwareJedi

vote

2 answers

Kerberized nfs4 mounts ERROR: No credentials found for connection to server

My client/servers are both running ubuntu 14.04 and kerberos user authentication works as intended. regular nfs4 mounts also work fine. All machines are running heimdal libraries. I haven't been able to get kerberized nfs4 working though. When…

ubuntu kerberos nfs4 heimdal

asked Jun 15 '14 at 00:17

cebalrai

vote

0 answers

Kerberos credentials cache dates reported differently in Debian Squeeze and Debian Wheezy

I have two Debian servers which use same LDAP/Kerberos server, but dates in output of klist on them shown in different format - mm/dd/yyyy on squeeze vs dd/mm/yy on wheezy. Looks like they just use different locate setting for the short date format,…

debian kerberos localization

asked Jun 01 '14 at 15:57

curious

vote

3 answers

Windows Vista and 7 crossrealm authentication MIT Kerberos

I'm using Windows Server 2008 and Windows Vista and 7 for cross realm authentication using MIT Kerberos 1.6 but when i try to login with a user the KDC answers: (wireshark output) error_code: KRB5KDC_ERR_ETYPE_NOSUPP (14) ... e-text:…

windows windows-server-2008 windows-7 windows-vista kerberos

asked Aug 28 '09 at 13:34

None

vote

1 answer

Have Kerberos use AD groups instead of netgroups

Currently we are able to have kerberos authenticate users who are in active directory (AD) and added to ldap created netgroups. We also set their unix attributes and add them to the netgroup. IT would be so much easier if we could use actual AD…

linux active-directory kerberos

asked May 22 '14 at 19:59

Biff

vote

2 answers

Samba Authentication

I know it's going to seem like I haven't done the research here, because I have done it, and I know how many related questions and tutorials there are. I have read every tutorial I can find online for this. I have gone through the complete list of…

active-directory windows-7 authentication samba kerberos

asked Apr 24 '14 at 06:57

rg6

vote

0 answers

Why does MIT Kerberos kinit warn "Your passwod will expire" when your principal is what is about to expire?

While doing some experimenting I noticed that the MIT Kerberos version 5 "kinit" program will warn you when either your password is about to expire (within 7 days) or when your principal is about to expire. However, the warning message is identical…

kerberos mitkerberos

asked Apr 18 '14 at 15:06

Ryan

vote

2 answers

Windows Authentication KRB5KRB_AP_ERR_MODIFIED

Let me preface by saying, I've been on this issue for about a week and a half now and I can't figure it out. I think I'm close, but every time I've thought that so far, I was wrong. I've looked at every forum post I can think to search for and…

authentication iis-7.5 kerberos spn

asked Apr 16 '14 at 22:36

Code Maverick

Prev 1 2 3

…

75 76 Next