Rohit Kumar Mehta <[email protected]> writes: > I think the best (and most secure) practice would be to regenerate all > the keytabs and the trust, so I'll tackle it next week.
Okay, yes, that's true. :) I suspect that the problem is that the intermediate KDC is rejecting the cross-realm authentication because the cross-realm ticket is DES. -- Russ Allbery ([email protected]) <http://www.eyrie.org/~eagle/> ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
