Kerberos is a computer network authentication protocol which allows nodes communicating over a non-secure network to prove their identity to one another in a secure manner.

0
votes
0answers
31 views

Solution for shared filesystem among loosely coupeld clients

I am looking for a solution for the following network setup (think university):Clients are mainly Laptops or PCs with their own local users / groups / system. They should be able to work without a ...
0
votes
0answers
26 views

realmd domain join with kinit not working on Ubuntu 18.04

I’m trying to set up an Ubuntu 18.04 machine and join it to an Active Directory domain. On all other systems I’ve used, I could do# kinit -kt /path/to/keytab my_username# realm join ad.example.com...
2
votes
1answer
7k views

'net ads join -U username' failing with an error 'NT_STATUS_IO_TIMEOUT'

I am attempting to provide access to Ubuntu shared directories using Active Directory users and group using Samba. I am following this article to install and configure AD and Unix so that access can ...
0
votes
0answers
6 views

Is there any way to rollback/undo erase krb5 libs or just restore the system to an earlier point red hat 7

I finally figured out why the Kerberos authentication wont work, the libraries are messed up pretty badly. After peering through the yum history it looks like someone tried to remove krb5-libs and it ...
0
votes
0answers
17 views

Issue With FTP Server that uses Kerberos to Authenticate Against AD

I have a Linux FTP that i'm running on my server and It utilizes Kerberos to authenticate against an Active Directory. I have been fighting with this one for a few days, and the I think I'm close. The ...
3
votes
2answers
5k views

Samba Winbind not working in Debian 8

I am setting up a new samba environment based on Debian Jessie.Installation of PDC was succesfully and Windows clients were able to join. Have a problem at joining the Linux clients.I was following ...
-1
votes
0answers
9 views

Same name in 2 different DNS names with appropriate suffixes

We have a multi-domain structure with separate 3rd party DNS solutions. In a certain domain, we have a domain controller for that domain listed with its appropriate suffix. However, in another domain, ...
0
votes
0answers
10 views

stop Kerberos from raising errors

I use Kerberos only occasionally, but it is constantly raising "Matching credential not found" errors, regardless of whether I have any application using Kerberos tickets. Is there a way to tell ...
0
votes
0answers
25 views

Having Issues with the Kadmin being locked out and Active Directory in linux ftp and Kerberos

So I have a Linux FTP site that I am configuring, and I am picking up where a previous colleague of mine left off. The Ftp supposedly has Active Directory login, which seems to work for certain users ...
0
votes
0answers
19 views

Printing to smb with kerberos auth?

I want to set up a printer via linux samba client to a Windows printserver.I managed to do it specifying this connection string:smb://user:pass@printserver/printerIs there a way to do auth ...
1
vote
1answer
278 views

Connecting to MS SQLServer from a Linux box

I am trying to connect to MS SQLServer from an application that I have written (using Qt) which runs on Linux. Here are some details of the setup:The SQLServer box (SQLBox) is part of my domain (...
0
votes
0answers
97 views

What is the difference between headless, service and user Kerberos keytabs

I often work on Kerberised Hadoop clusters, and have to use a variety of keytabs, such as:hbase.headless.keytabhbase.service.keytabdevuser.keytabI'm not entirely clear on exactly what the ...
0
votes
0answers
33 views

Enabling AES128_HMAC_SHA1 encryption method restricts local users from changing password - Bug?

I am facing this issues recently, Whenever I enable the AES128_HMAC_SHA1 encryption method for Kerberos in gpedit(path), We are not able to change the local user password via crtl+alt+del screen ...
0
votes
0answers
28 views

IPA RHEL7 AD - can't ssh with AD account to IPA host

No matter how hard I try, I can't connect to IPA using a Windows account in AD - I did what https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/windows_integration_guide/...
0
votes
0answers
55 views

Add multiple Service Principal Name to Keytab file on Windows

What command can I run on windows to add a SPN to a keytab file on Windows? It seems all the documentation I can find is for linux. I want to have multiple SPNs in one keytab file.

153050per page