Solved

kdc reply did not match expectations while getting initial credentials

Posted on 2011-09-16
1
1,452 Views
Last Modified: 2013-12-16
I'm trying to setup a Redhat Enterprise version 4 server to act as a samba file server for a windows 2000 domain.  I've looked through the previous posts and think that I've got most everything done correctly.  But I still get this error when I try to run this command:
kinit administrator
password for administrator@COM2000: *****
kinit(v5): kdc reply did not match expectations while getting initial credentials

If I type in an incorrect password I get a "Preauthentication failed..." message, so I'm sure I'm talking to the right server.

I've checked the server time and the linux time and they are within 30 seconds of each other.
I think I've got all the names in uppercase where they need to be.

We have a slightly complicated setup that may be part of the confusion.  The domain realm is company.net  but the Kerberos realm is COM2000.  That is you can find the server by pinging server1.company.net but when you log in the domain is COM2000

The relevant parts of the krb5.conf file are:
[libdefaults]
 default_realm = COM2000
 dns_lookup_realm = true
 dns_lookup_kds = true

[realms]
  COM2000 = {
    kdc = SERVER1.COMPANY.NET:88
   admin_server = SERVER1.COMPANY.NET
  default_domain = COM2000
}

[domain_realm]
  .company.net = COM2000
  company.net = COM2000

I'm not sure what the next steps are to get this working.  Any ideas?
0
Comment
Question by:geekdad1
1 Comment
 
LVL 1

Accepted Solution

by:
geekdad1 earned 0 total points
ID: 36551111
Well I figured it out.  I had the domain realm and kerberos realm backwards.  When I started trying to login using COMPANY.NET everything started working.
0

Featured Post

Find Ransomware Secrets With All-Source Analysis

Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

Join & Write a Comment

Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
Setting up Secure Ubuntu server on VMware 1.      Insert the Ubuntu Server distribution CD or attach the ISO of the CD which is in the “Datastore”. Note that it is important to install the x64 edition on servers, not the X86 editions. 2.      Power on th…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now