Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [kerberos]

Kerberos is a computer network authentication protocol, which allows nodes communicating over a non-secure network to prove their identity to one another in a secure manner. Its designers aimed primarily at a client–server model, and it provides mutual authentication — both the user and the server verify each other's identity.

As many vendors have their own implementation of Kerberos, configuration details for each implementation is likely to vary. Here are some links that may help those troubleshooting Kerberos on commonly used paltforms.

1136 questions
0
votes
1 answer

Cross Forest Delegation

Is it possible to do delegation in a cross forest scenario with only a one way trust? I have 2 domains which are in different forests, and there is a one way trust from the resourcedomain to the userdomain. The SPN's are registered properly on the…
user59052
0
votes
2 answers

kerberos instead of http over ssl

If I want to use kerberos instead of https (http over ssl) how do I make sure data is not tampered or read in the transit?
kalyan
  • 185
  • 2
  • 7
0
votes
1 answer

MAC 10.4.11 & Win2k8

I am attempting to use a Mac Xserve running 10.4.11 to access a file share on a Win2k8 machine, but it's failing due to Kerberos authentication errors. Any ideas how to fix/update a Mac? As an aside, this is the first Mac I've dealt with in 20…
user7862
  • 178
  • 3
  • 5
  • 10
0
votes
1 answer

Kerberos Authentication for Webservers

Before I blindly jump on "trial an error" tests, I'd like to ask some general questions on Kerberos Authentication for Webservers. I want to evaluate what's possible with Kerberos. The main benefit would, of course, be Single-Sign-On. But it might…
DonEstefan
  • 118
  • 2
  • 9
0
votes
2 answers

Event ID 4 Kerberos

Help! I screwed up big time. While trying to obtain the kerberos keys so i could decode some kerberos packets with wireshark, I inadvertently changed some internal passwords and I have no idea how to fix it. I am keenly aware of how stupid this…
Erik Funkenbusch
  • 600
  • 10
  • 27
0
votes
1 answer

How to configure AAMs in SP 2010 to work with ISA 2006 and Kerberos authentication?

We are attempting to set up SharePoint Foundation to use Kerberos constrained delegation with ISA Server 2006. My current issue is that the alternate access mappings are not working properly. Issues: None of the drop down menus and other dialogs…
Robert Kaucher
  • 477
  • 1
  • 3
  • 18
0
votes
1 answer

db2 SQL30082N error

We're using db2 9.5 and on rare occasions get the following error when attempting to connect to the database. The program is forked from another process and trying a second time always succeeds. [IBM][CLI Driver] SQL30082N Attempt to establish…
brianegge
  • 1,054
  • 2
  • 14
  • 23
0
votes
2 answers

What should I use for mixed environment authentication + SSO?

Our company runs mostly linux server but mostly windows clients. I'm looking for a solution that would allow all of our web applications to have a login portal (and once you're logged in you don't have to log into the next application) plus have the…
edude05
  • 323
  • 2
  • 7
  • 13
0
votes
2 answers

using windows startup script to copy files/folders from network share

I'm having an issue running xcopy as part of a startup script. The server operating system is Windows 2008 R2 and the client operating system is Windows XP SP3. File server hostname: filesrv1 DNS Alias (CNAME): filesrv The command being executed…
another_netadmin
  • 83
  • 7
0
votes
2 answers

Kerberos SSO browser integration?

I'm installing a bunch of web apps for the office, and one of the wants would be Kerberos-managed SSO. Now, I have found some information on the matter, and I wondered, what browsers integrate Kerberos SSO? Of course I could just use the underlying…
Olivier Tremblay
  • 347
  • 3
  • 16
0
votes
1 answer

Cannot delete files on samba share when authenticated using kerberos

I have a samba server that authenticates users using LDAP, however it does have kerberos enabled as well. Unfortunately users authenticated using kerberos cannot delete files. I can test this using smbclient - if I use the '-k' switch, I cannot…
ondra
  • 424
  • 4
  • 10
0
votes
0 answers

Kerberos ticket timeouts with sssd and cifs shares

We are integrating Linux machines into our Active Directory infrastructure. It works quite fine, users are logging in with their AD-credentials, and get access to cifs-network-shares via PAM-mount. However, if we are running some lengthy script…
Niels Jespersen
  • 101
  • 1
0
votes
0 answers

Apache with SSO and group-based authentification

I would like to configure SSO in Apache incl. group-based authentication. It means that users, who are a member of a particular group, should be able to log in to the website without entering the login data. Users, who aren't a member of the group,…
honeybee
  • 1
  • 1
0
votes
0 answers

KRB5KRB_AP_ERR_MODIFIED trying to use SPN credentials

I'm trying to set up a Windows 2019 system as an SMB server to work with third-party software on an external, non-Windows system that uses Kerberos to authenticate to the SMB server. This SMB server is joined to an existing Active Directory domain…
Steve Talmage
  • 1
0
votes
0 answers

NFSv4 with Kerberos takes a long time to mount

I have an NFS server with Kerberos authentication (Debian 11). If I want to mount a share on a client for the first time after a restart, this takes 10-12 seconds. If I then mount another share from the same server, it works almost immediately. NFS…
Nick
  • 1
1 2 3
75 76