asked on Which version of Kerberos do I use?
Hi,
We are using a single-sign on software from Evidian.
We've noticed that on our Windows 7 x86 machines, the user is not automatically identified by Evidian when logging in with firstname.lastname@domain.
On ther other hand, when logging in with the short username, the Evidian engine recognises the account and automatically identifies the user.
I believe this is due to the way Kerberos is used.
I've read years ago the differences between logging in with "firstname.lastname@domain
Could someone refresh my memory and let me know what are the difference for Kerberos between the long and short username?
I've already found this (http://technet.microsoft.com/en-us/library/cc772815%28WS.10%29.aspx) but it doesn't say whether using the short or long username make a difference or not
Thanks
We are using a single-sign on software from Evidian.
We've noticed that on our Windows 7 x86 machines, the user is not automatically identified by Evidian when logging in with firstname.lastname@domain.
On ther other hand, when logging in with the short username, the Evidian engine recognises the account and automatically identifies the user.
I believe this is due to the way Kerberos is used.
I've read years ago the differences between logging in with "firstname.lastname@domain
Could someone refresh my memory and let me know what are the difference for Kerberos between the long and short username?
I've already found this (http://technet.microsoft.com/en-us/library/cc772815%28WS.10%29.aspx) but it doesn't say whether using the short or long username make a difference or not
Thanks
Windows Server 2008
Last Comment
CCBelux
What is first.last@domain.com is that their email address or rehire UPN?
ASKER
Hi demazter, this is indeed the UPN (and also the email address).
So when logging in with the logon name it doesn't work, when loggin in with the pre-)Windows 2000 logon name, it does work.
07-Mar-2011-15-23-52.jpg
So when logging in with the logon name it doesn't work, when loggin in with the pre-)Windows 2000 logon name, it does work.
07-Mar-2011-15-23-52.jpg
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
OK, I thought using the "post-Windows 2000" logon forced the usage of kerberos v5 while the "pre-Windows 2000" logon still used an older version. Do you confirm ?
Not that I am aware of. It's not something I've ever heard of to be honest.
ASKER
OK, I'll accept your comment as answer then. if anyone has any other info, please add your comment.
Thanks demazter
Thanks demazter
ASKER
Accepted until someone else prooves otherwise