directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Wu, James C." <James.C...@disney.com>
Subject kinit failed on - Integrity check on decrypted field failed
Date Sat, 06 Apr 2013 00:23:08 GMT
Hi,

I am trying to set up ApacheDS as a KDC. After adding hnelson using the following ldif, I
could not get kinit to get the ticket

	 dn: uid=hnelson,ou=users,dc=example,dc=com
	objectclass: top
	objectclass: person
	objectclass: inetOrgPerson
	objectclass: krb5Principal
	objectclass: krb5KDCEntry
	cn: Horatio Nelson
	sn: Nelson
	uid: hnelson
	userpassword: secret
	krb5PrincipalName: hnelson@EXAMPLE.COM


The log output of ApacheDS show the following output:

	[cloud-user@n7-z01-0a2a0c3a ~]$ [17:15:57] ERROR [org.apache.directory.server.KERBEROS_LOG]
- No timestamp found
	[17:15:57] WARN [org.apache.directory.server.kerberos.protocol.KerberosProtocolHandler] -
Additional pre-authentication required (25)
	[17:15:57] WARN [org.apache.directory.server.KERBEROS_LOG] - Additional pre-authentication
required (25)
	[17:16:00] WARN [org.apache.directory.server.kerberos.protocol.KerberosProtocolHandler] -
Integrity check on decrypted field failed (31)
	[17:16:00] WARN [org.apache.directory.server.KERBEROS_LOG] - Integrity check on decrypted
field failed (31)

Could someone give me some hint?

james
Mime
View raw message