[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: password changing from Windows

To: heimdal-discuss@sics.se
Subject: Re: password changing from Windows
From: Dave Love <d.love@dl.ac.uk>
Date: Tue, 21 Dec 2004 12:35:57 +0000
In-Reply-To: <rzqacs8yniz.fsf@loveshack> (Dave Love's message of "Tue, 21Dec 2004 10:05:24 +0000")
References: <rzqacs8yniz.fsf@loveshack>
Sender: owner-heimdal-discuss@sics.se
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/21.2 (gnu/linux)

I wrote:

> When I try it from Windows XP with a Windows 2003 AD controller
> trusting Heimdal 0.6.3, Windows says the password can't be changed.
> The KDC log does show a changepw ticket being issued.

Sorry, I didn't look closely enough at the log.  I assume that the
problem is the requested flags and `Ticket may not be forwardable'
below.  (The same thing happens if I use ksetup to try to change the
password.)  Any suggestions in the light of that?

  AS-REQ ***@DL.AC.UK from IPv4:*.*.*.* for kadmin/changepw@DL.AC.UK  
  No PA-ENC-TIMESTAMP -- ***@DL.AC.UK
  sending 209 bytes to IPv4:*.*.*.*
  AS-REQ ***@DL.AC.UK from IPv4:*.*.*.* for kadmin/changepw@DL.AC.UK  
  Looking for pa-data -- ***@DL.AC.UK
  Pre-authentication succeded -- ***@DL.AC.UK
  Using des-cbc-md5/des-cbc-md5
  Requested flags: renewable_ok, renewable, forwardable
  Ticket may not be forwardable -- ***@DL.AC.UK
  sending 117 bytes to IPv4:*.*.*.*

Follow-Ups:
- Re: password changing from Windows
  - From: Love <lha@stacken.kth.se>

References:
- password changing from Windows
  - From: Dave Love <d.love@dl.ac.uk>

Prev by Date: password changing from Windows
Next by Date: password changing from Windows
Prev by thread: password changing from Windows
Next by thread: Re: password changing from Windows
Index(es):
- Date
- Thread