[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PKINIT + heimdal snapshot: certificate authentication does not work

To: heimdal-discuss@sics.se
Subject: PKINIT + heimdal snapshot: certificate authentication does not work
From: Grzegorz Misztalewski <Grzegorz.Misztalewski@pentacomp.pl>
Date: Wed, 25 Aug 2004 14:44:54 +0200
Sender: owner-heimdal-discuss@sics.se
User-Agent: KMail/1.6.1

Hello,

I'm trying to get Heimdal + PKINIT working. I have installed Heimdal and 
PKINIT according to  http://people.su.se/~lha/patches/heimdal/pkinit/ (latest 
heimdal snapshot + asn1-choice with the same date in file name).

Using kinit with password authentication works fine.
Unfortunately, when I try authenticate user with certificate, e.g.
$ kinit -C FILE:~/user.crt,~/user.key  user@LINDOM.PL
kinit returns:
kinit: Password incorrect

KDC log contains:
2004-08-24T17:22:29 AS-REQ user@LINDOM.PL from IPv4:192.168.4.21 for 
krbtgt/LINDOM.PL@LINDOM.PL
2004-08-24T17:22:29 Looking for PKINIT pa-data -- user@LINDOM.PL
2004-08-24T17:22:29 Failed to decode PKINIT PA-DATA -- user@LINDOM.PL
2004-08-24T17:22:29 Looking for ENC-TS pa-data -- user@LINDOM.PL
2004-08-24T17:22:29 No ENC-TS found -- user@LINDOM.PL
2004-08-24T17:22:29 sending 156 bytes to IPv4:192.168.4.21

My question is: is it configuration problem or PKINIT with Heimdal snapshot 
doesn't work properly?

Regards,
Grzegorz

Prev by Date: problem building heimdal on solaris 8
Next by Date: Decoding transited encoding: KDC policy rejects request
Prev by thread: problem building heimdal on solaris 8
Next by thread: Decoding transited encoding: KDC policy rejects request
Index(es):
- Date
- Thread