Package: krb5-user Version: 1.10+dfsg~alpha2-1 Severity: important Hello,
I am using krb5-user to authenticate to an AD server. Every few months, the password expires and I can change it from within kinit. With 1.10+dfsg~alpha2-1 (the version in testing ATM), I had the following error message (this is the only output from kinit): kinit: Generic preauthentication failure while getting initial credentials If I type a wrong password, the error message is : kinit: Preauthentication failure while getting initial credentials >From the documentation, the earlier is KRB5_PREAUTH_FAILED, ie an internal error. I looked at the network traffic from the session with the good password and saw a "changepw" packet, so I started to suspect the client side. I then tried with the previous version (1.10+dfsg~alpha1-6) and got the following error message : kinit: Looping detected inside krb5_get_in_tkt while getting initial credentials Finally, I installed the version from stable (1.8.3+dfsg-4squeeze2) and it worked : I could change my password and authenticate to the server. Please let me know if you need more information. However as I am not in the situation of an expired password, I am afraid that I won't be able to give you meaningful traces. Thanks for maintaining krb5 ! -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (900, 'testing') Architecture: i386 (i686) Kernel: Linux 3.1.0-1-686-pae (SMP w/2 CPU cores) Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash -- Etienne Millon -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
