Back up all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.
Solved
Which version of Kerberos do I use?
Posted on 2011-03-04
Hi,
We are using a single-sign on software from Evidian.
We've noticed that on our Windows 7 x86 machines, the user is not automatically identified by Evidian when logging in with firstname.lastname@domain.
On ther other hand, when logging in with the short username, the Evidian engine recognises the account and automatically identifies the user.
I believe this is due to the way Kerberos is used.
I've read years ago the differences between logging in with "firstname.lastname@domain
Could someone refresh my memory and let me know what are the difference for Kerberos between the long and short username?
I've already found this (http://technet.microsoft.com/en-us/library/cc772815%28WS.10%29.aspx) but it doesn't say whether using the short or long username make a difference or not
Thanks
We are using a single-sign on software from Evidian.
We've noticed that on our Windows 7 x86 machines, the user is not automatically identified by Evidian when logging in with firstname.lastname@domain.
On ther other hand, when logging in with the short username, the Evidian engine recognises the account and automatically identifies the user.
I believe this is due to the way Kerberos is used.
I've read years ago the differences between logging in with "firstname.lastname@domain
Could someone refresh my memory and let me know what are the difference for Kerberos between the long and short username?
I've already found this (http://technet.microsoft.com/en-us/library/cc772815%28WS.10%29.aspx) but it doesn't say whether using the short or long username make a difference or not
Thanks
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
4
3
7 Comments
Hi demazter, this is indeed the UPN (and also the email address).
So when logging in with the logon name it doesn't work, when loggin in with the pre-)Windows 2000 logon name, it does work.
07-Mar-2011-15-23-52.jpg
So when logging in with the logon name it doesn't work, when loggin in with the pre-)Windows 2000 logon name, it does work.
07-Mar-2011-15-23-52.jpg
There is no difference in the way kerberos works (as far as I am aware) when you use the different login styles. Just some software is not written to recognise the UPN's and therefore will not work.
OK, I thought using the "post-Windows 2000" logon forced the usage of kerberos v5 while the "pre-Windows 2000" logon still used an older version. Do you confirm ?
Featured Post
Managing Active Directory can get complicated. Often, the native tools for managing AD are just not up to the task. The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
I was supporting a handful of Windows 2008 (non-R2) 2 node clusters with shared quorum disks. Some had SQL 2008 installed and some were just a vendor application that we supported. For the purposes of this article it doesn’t really matter which so w…
OfficeMate Freezes on login or does not load after login credentials are input.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention.
Multiple USB devices need t…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders.
Click on Start and then select Computer to view the available drives on the se…
Suggested Courses
Course of the Month11 days, 4 hours left to enroll
718 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.