Which version of Kerberos do I use?

Hi,

We are using a single-sign on software from Evidian.
We've noticed that on our Windows 7 x86 machines, the user is not automatically identified by Evidian when logging in with firstname.lastname@domain.com". The user then have to retype his password in the Evidian window.

On ther other hand, when logging in with the short username, the Evidian engine recognises the account and automatically identifies the user.

I believe this is due to the way Kerberos is used.

I've read years ago the differences between logging in with  "firstname.lastname@domain.com" or the short username, but I do not find the information back on the Net.

Could someone refresh my memory and let me know what are the difference for Kerberos between the long and short username?

I've already found this (http://technet.microsoft.com/en-us/library/cc772815%28WS.10%29.aspx) but it doesn't say whether using the short or long username make a difference or not

Thanks
CCBeluxAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Glen KnightConnect With a Mentor Commented:
There is no difference in the way kerberos works (as far as I am aware) when you use the different login styles.  Just some software is not written to recognise the UPN's and therefore will not work.
0
 
Glen KnightCommented:
What is first.last@domain.com is that their email address or rehire UPN?
0
 
CCBeluxAuthor Commented:
Hi demazter, this is indeed the UPN (and also the email address).
So when logging in with the logon name it doesn't work, when loggin in with the pre-)Windows 2000  logon name, it does work.
07-Mar-2011-15-23-52.jpg
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
CCBeluxAuthor Commented:
OK, I thought using the "post-Windows 2000" logon forced the usage of kerberos v5 while the "pre-Windows 2000" logon still used an older version. Do you confirm ?
0
 
Glen KnightCommented:
Not that I am aware of.  It's not something I've ever heard of to be honest.
0
 
CCBeluxAuthor Commented:
OK, I'll accept your comment as answer then. if anyone has any other info, please add your comment.

Thanks demazter
0
 
CCBeluxAuthor Commented:
Accepted until someone else prooves otherwise
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.