On 1/25/07 10:11 AM, "Mike Wyant, Jr." <
email@hidden> wrote:
I am working on implementing an AD-OD environment and I am finding
that when I log in with an AD account I get the expected ticket.
However, I do not seem to be able to log in to other servers with
anything other than my kerberos authetication. In addition, when I
try to connect to one of the servers that I have saved username and
password information for (in keychain) in the past, the server shows
me as being Disconnected/Asleep (via the AFP connection) and
connected using my Kerberos ticket. In this case, the AFP server is
bound to AD and using kerberos as well - however I do my
administrative work through a local admin account.
Everything is running 10.4.8 client/server.
Any suggestions?
Thanks,
Mike
In my AD-OD environment, the Kerberos authentication window appears first,
but if I hit the Cancel button, the standard Apple authentication window
appears next, which I can then use to authenticate against an OD/local
account.
If you have already authenticated with Kerberos, then your computer will
always use that ticket when accessing resources in the authentication realm.
You should run "kdestroy" from the terminal to remove the kerb ticket(s)
before attempting to authenticate with an OD or local account.
------------------------------
Peter M. Bukowinski
IT - Sr. Support Analyst
Janelia Farm Research Campus
Howard Hughes Medical Institute
