Questions tagged [kerberos]

Kerberos is a computer network authentication protocol, which allows nodes communicating over a non-secure network to prove their identity to one another in a secure manner. Its designers aimed primarily at a client–server model, and it provides mutual authentication — both the user and the server verify each other's identity.

As many vendors have their own implementation of Kerberos, configuration details for each implementation is likely to vary. Here are some links that may help those troubleshooting Kerberos on commonly used paltforms.

RFC Kerberos - http://www.faqs.org/rfcs/rfc1510.html
Kerberos Blogs by AD support team at Microsoft - http://blogs.technet.com/b/askds/archive/tags/Kerberos/
Kerberos blogs by Open Specification team at Microsoft - http://blogs.msdn.com/b/openspecification/archive/tags/Kerberos/
Ubuntu Linux post on Kerberos - https://help.ubuntu.com/community/Kerberos

1136 questions

vote

1 answer

Problems set-up Single Sign-On using Kerberos authentication

I need for Ruby on Rail application set authentication via Active Directory using Kerberos authentication. Some technical information: I are using Apache installed mod_auth_kerb In httpd.conf I added LoadModule auth_kerb_module…

apache-2.2 ruby-on-rails kerberos

asked Feb 13 '13 at 19:43

user1124133

vote

3 answers

IIS WebServer CreatesNew file: OwnerShip?

IIS is configured for Integrated Windows Authentication. web.config is configured as follows: We are Load balancing between \webserver1 and \webserver2. Windows Server…

iis asp.net kerberos

asked Jul 28 '09 at 19:06

maxbeaudoin

vote

2 answers

Service principal name (SPN) for machine 'testsystem' not found in Active Directory

we are using Virtual PCs for some testing mockup. One VPC is running as Domain Controller with AD configured on it. The domain name is testing.local. We have another VPC in domain running web application (configured as web site listening at port…

iis active-directory authentication kerberos

asked Jul 27 '09 at 08:01

TheVillageIdiot

vote

0 answers

Mixing Redmine and custom authentication method in a single apache virtualhost for Redmine

I developed on Redmine a plugin to automatically log users using the REMOTE_USER given by Apache when its Kerberos ticket is accepted. This plugin works as long as the user has a corporate login, but some developers might come from other development…

apache-2.2 virtualhost authentication kerberos redmine

asked Dec 18 '12 at 06:15

DJYod

vote

0 answers

Winbind info shows local users that do not exist

I am setting up Samba on a Linux machine running CentOS 6 (called localhost, and the AD computer I am connecting to is dc.companyname.com), and I have done everything successfully, except when I type wbinfo -u It shows a local user,…

active-directory samba kerberos winbind

asked Dec 14 '12 at 22:25

Shiroi98

vote

1 answer

Kerberos credential cache type "DIR:"

How do I set the MIT Kerberos 5 credential cache type to "DIR:"? See Release Notes at http://web.mit.edu/kerberos/krb5-1.10/ "Major changes in 1.10: Add the DIR credential cache type, which can hold a collection of credential caches." Unfortunately,…

linux security kerberos

asked Nov 22 '12 at 23:48

Secoe

vote

1 answer

Kerberos: Running an app with a parameter using krenew

I need to run an application with krenew, but the application also needs to receive a parameter via command line and I need to send its output to a file. From the documentation, it looks like this should do the trick: krenew -t -- sh -c 'compute-job…

linux bash kerberos

asked Nov 22 '12 at 21:08

Mihai Todor

vote

0 answers

Kerberos: connection from win app running from IIS to SQL failed

I have an IIS web-application with Windows authentication and impersonation. This application connects to SQL server. In this case Kerberos works fine. But there is a problem. Web-application runs windows application (COM), which also connects to…

iis iis-7.5 sql kerberos delegation

asked Nov 22 '12 at 15:59

Mikhail Kislitsyn

vote

2 answers

Cannot access shares via \\servername but \\ip works

To set up the scenario: One of our techs set one of the domain controllers to use Microsoft time. The time IS correct (including Time Zone) and DOES match the other domain controller's time; it was previously incorrect, however. Since the change, no…

windows-server-2003 network-share kerberos

asked Nov 20 '12 at 16:06

Jeff

vote

0 answers

heimdal kerberos in openldap issue

I think I posted this on the wrong 'sister site', so here it is. I'm having a bit of trouble getting Kerberos (Heimdal version) to work nicely with OpenLDAP. The kerberos database is being stored in LDAP itself. The KDC uses SASL EXTERNAL…

authentication openldap kerberos sasl heimdal

asked Nov 11 '12 at 21:01

Brian

vote

1 answer

Updating delegated Kerberos credentials through SSH using GSSAPIRenewalForcesRekey

I've been investigating options for minimizing the amount of credentials that need to be retyped as credentials expire. One of the big problems I'm having now is dealing with delegated credentials, which interferes with long-running SSH sessions.…

ssh kerberos

asked Nov 05 '12 at 23:17

Belly

vote

2 answers

Kerberos with LDAP backend still using db2

I've installed and configured LDAP, installed and configured kerberos to use LDAP as the backend, as follows: [dbdefaults] ldap_kerberos_container_dn = dc=voltage,dc=com [dbmodules] openldap_ldapconf = { db_library = kldap …

openldap kerberos

asked Oct 06 '12 at 17:25

Sam Hammamy

vote

0 answers

LSA Cache Entries - NTLM versus Negotiate Windows Authentication Providers

We have a situation, due to a recent employee name change, where the HttpContext.Current.User.Identity.Name property of an ASP.NET web application resolves to the old username. This has been discussed in great detail here, here, and again here. …

active-directory domain-controller kerberos ntlm

asked Sep 07 '12 at 12:43

kmk

vote

0 answers

Apache Kerberos/LDAP: A required input parameter could not be read: An invalid name was supplied (, Unknown error)

(Debian Squeeze) I have Apache authenticating via Kerberos - that works fine. Now I want to restrict the site to a single group only, so I need to add LDAP authorization. I enabled authnz_ldap and edited the apache config. When I use the "Require…

apache-2.2 ldap kerberos authorization

asked Sep 07 '12 at 05:30

DrStalker

6,676
24
76
106

vote

2 answers

Passing credentials from a website to a web service on the same server

I have a VB6 backend for a classic ASP site. That VB then calls a web service on the same server using MSXML2. This works all of our servers but one. If I set the web service site to accept anonymous login it will work however if I force only…

iis kerberos vb6

asked Jul 17 '09 at 19:09

Ryan

Prev 1 2 3

…

75 76 Next