To create a kerberos keytab file on Ubuntu and with the kerberos packages installed (e.g. sudo apt-get install krb5-user ) root@jmcc02:~# ktutil ktutil: addent -password -p myusername@DOMAIN.TLD.COM -k 1 -e RC4-HMAC Password for myusername@DOMAIN.TLD.COM: ktutil: wkt username.keytab ktutil: quit root@jmcc02:~# After completing those steps there should be a keyfile created in the current directory. That… Read more »
Posts Tagged: active directory
Unlocking Active Directory Accounts using LDAP
I am using PHP with LDAP to manage some aspects of user accounts within Active Directory. One of the things I needed to do was to reset the accounts of users who had incorrectly entered their password too many times. Initially I thought that the ‘useraccountcontrol’ field was what I needed as this is used… Read more »
LDAPS Active Directory Issues with php-5.3.3-27.el6_5.2.x86_64
I upgraded a CentOS server today updating PHP from php-5.3.3-27.el6_5.x86_64 to php-5.3.3-27.el6_5.2.x86_64 This stopped a PHP web application I had written from being able to communicate with Active Directory over LDAPS. Normal LDAP appears to continue working fine but when I change my connections back to ldaps they stop working. To deal with the problem… Read more »
Exim Troubleshooting
We had a bit of difficulty yesterday with LDAP / Active Directory authentication within Exim. Sending mail via SMTP with authentication was timing out and it looked like a TLS error. 2013-10-01 14:39:12 [17013] TLS error on connection from blahblahblah (ehloname) [192.168.1.3]:52031 I=[192.168.6.51]:587 (SSL_accept): error:140760FC:SSL routines:SSL23_GET_CLIENT_HELLO:unknown protocol We got to the bottom of the problem… Read more »
