Hi all.
When I use kinit on 1.5 a ticket is generated correctly but under 1.4 I get a Pre-authentication error.
Why is it differnt between the 2 environments?
Is there something special I'm missing (... I've probably set myself up here! :-) in the 1.4.2 environment?
The same thing happens when I run the GssExample code. Fine on 1.5 but fails on 1.4.
Thanks.
All the best,
Tony
In http://java.sun.com/javase/6/docs/technotes/guides/security/enhancements.html, you can see
Support for new Pre-Authentication Mechanisms
Java GSS/Kerberos now includes support for the new pre-authentication mechanisms as described in the latest Kerberos specification. For details, see Java GSS Security Features.
This feature was backported to J2SE 5.0 update 8.
This is great except I'm currently writing a Portlet with WebSphere Portal 5.1.0.4 and the Java version I have to work with is 1.4.2_12.
We do use a single signon mechanism to authenticate with TAM (Tivoli Access Manager) but our LDAP server doesn't contain the information I need at this time (or in the near future).
This is why I need to connect to AD.
I guess this is closer than before but I'm not quite there yet.
I guess I may need to look into NTLM2 (depending on if we allow it with AD on our system).
Thanks for your help wangwj.
All the best,
Tony
