[OpenAFS] Active Directory 2003, kerberos 5, openAFS - rxkad
John W. Sopko Jr.
Wed, 10 Jan 2007 15:29:01 -0500
Jeffrey Altman wrote:
> The -kvno option of ktpass is only to be used if you are generating
> a keytab entry to be used in conjunction with a Windows 2000 server.
> Do not use it if you are using a Windows 2003 server.
Then how do you get the kvno in the account and the keytab to match?
Also as far as I can tell ktpass does not change the account password.
> The hex string that is specified as the Salt is just that a hex string.
> Convert the hex to ASCII characters.
> 4D 53 45 2E 55 4E 43 43 53 2E 54 45 53 54 41 46 53 2E 43 53 2E 55 ...
> M S E . U N C C S . T E S T A F S . C S . U ...
John W. Sopko Jr. University of North Carolina
email: sopko AT cs.unc.edu Computer Science Dept., CB 3175
Phone: 919-962-1844 Sitterson Hall; Room 044
Fax: 919-962-1799 Chapel Hill, NC 27599-3175