[Freeipa-users] Windows Client Problem
Konstantin Kozlov
kozlov at spbcas.ru
Mon Dec 29 13:05:34 UTC 2008
Hi,
You can search the list for a similar thread and here are the steps I've
followed with success:
Add host principal for winxp machine with the encoding des-cbc-crc and
passowrd (-P ioption for ipa-getkeytab). Do not store this keytab in
/etc/krb5.keytab but rather in some other file.
Install MS Support Tools on WinXP, and run
ksetup /setdomain ...
ksetup /addkdc ...
ksetup /setcomputerpassword ...
ksetup /mapuser * <your user>
WinXP machine asks to login to Kerberos realm at login screen.
I failed to map one ipa-user to one win-user. But may be because I
didn't have enough time. If you will succeed - leave a note here please.
Best regards,
Kostya
Viji V Nair wrote:
> Hi,
>
> I am a new user of free-ipa, I have installed the free-ipa packages
> shipped with fedora 10. I have more that 100 windows clients to
> authenticate. Here is my problem,
>
> All the clients are XP SP2, I have installed MIT Kerberos for Windows
> 3.2.2. Always the native windows login prompt appears first, when i
> login to windows the kerberos client is asking for authentication.
>
> I want to replace this windows authentication with kerberos
>
> Any help on the same will be greatly appreciated.
>
> Thanks
> Viji
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
--
Konstantin Kozlov
Department of Computational Biology,
Center for Advanced Studies,
SPb State Polytechnical University,
195251, Polytechnicheskaya ul., 29,
bld 4, office 204,
St.Petersburg, Russia.
Tel./fax: +7 812 596 2831
More information about the Freeipa-users
mailing list