[OpenAFS] Switching from MIT to win 2003 krb5 server - ktpass
question
Derrick J Brashear
shadow@dementia.org
Thu, 7 Jun 2007 09:34:58 -0400 (EDT)
On Thu, 7 Jun 2007, Lars Schimmer wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi!
>
> Now I tried to export afs@CGV.TUGRAZ.AT via ktpass on Win 2003 AD Server.
> I used the line:
> ktpass -out NAME.out.txt -princ afs@CGV.TUGRAZ.AT \
> -crypto DES-CBC-CRC +rndPass -DesOnly /ptype KRB5_NT_SRV_HST
Did you install the current (2007 update) of ktpass? If not, you will be
sad.
> Was thsi correct? in the old mails from Mr. Altman no /ptype was noted,
> but Win2003 told me it needed this. And the host type looks reasonable
> instead of user type, or?
I don't believe host type connotes anything you don't want, so it's fine.