Make Kerberos work even with wrong time on server
Posted on 2018-03-08
This is a strange one. I have a developer who wants to test code on a dev server, but.... he has to change the clock for some reason. Meaning the time is off on the server from the time on the rest of the domain. So, once his PowerShell script changes the clock it then can't continue because Kerberos freaks out. (PowerShell is running on his laptop and remoting into said server, but he doesn't change his laptop's time)
"Starting a command on the remote server failed with the following error message: WinRM cannot process the request. The following error with errorcode 0x80090324 occured while using Kerberos authentication: There is a time and/or date difference between the client and server."
Everything I Google talks about time syncing errors and how to fix that... but that's not the problem. I WANT time to be off and authentication to work.