|
Posted by S. Pidgorny on February 22, 2006, 6:43 am
Please log in for more thread options
You have to use ksetup.exe from the support tools:
Using an MIT KDC with a Standalone Windows 2000 Workstation
(http://www.microsoft.com/technet/prodtechnol/windows2000serv/howto/kerbstep.mspx#EEAA)
- XP is similar
--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-
>I tried posting this in the Access Security forum last week, but didn't
>hear
> anything back, and thought maybe someone here would have some ideas?
> Thanks!
>
> Hello,
>
> Having a problem with Kerberos/SPNEGO authentication with a Windows XP
> client. We have a non-Windows KDC and both Windows and non-windows
> clients.
> On a unix-type machine, if I run kinit and authenticacate with the KDC, I
> will get a TGT. Then, when I go to another intranet website that also
> requires kerberos authentication, I am automagically given an HTTP ticket
> (which I can see when I run klist) and allowed in the site. I want this
> same
> functionality from winxp. I need this same functionality on a non-domained
> windows client (and maybe domained ones as well, actually).
>
> I've installed kerbtray which I think is whats given me the ability to do
> the kinit/klist stuff on windows..
>
> I really have no idea what to change. I've modified some firefox settings
> to allow the browser to do spnego (setting
> network.negotiate-auth.delegation-uris and
> network.negotiate-auth.trusted-uris).
>
> Does anyone know of a set specific instructions about this? If this is the
> wrong forum for this type of question, also please let me know. Thanks :)
> :)
> -- Emily
| 
XML Sitemap