|
Issue:
When configured for Kerberos authentication and the KDC is an Active Directory server, the authentication fails.
Cause:
Active Directory users have pre-authentication enabled by default. Pre-authentication is time sensitive so the date or time must be synchronized between the KDC (Active Directory) servers and the Iolan SDS.
Solution:
Ensure that the Date and Time is synchronized with your KDC.
The best method is to use NTP on both the KDC and the Iolan SDS.
If you are manually configuring the Time then ensure that you have set the correct TimeZone and the time offset.
Note: this problem will occur if you have enabled pre-authentication with MIT and Heimdal kerberos also.
Article
ID: |
522 |
| Published: |
2/9/2005 10:44:22 AM |
Last
Modified: |
5/1/2007 8:13:15 AM |
Issue Type: |
Trouble Shooting |
|