1 Reply Latest reply: Jan 27, 2010 11:37 PM by 843810 RSS

    failed to authenticate successfully

    843810
      Hello,

      Can anyone help me out to resolve the following errors when I try to authenticate in java-ldap-kerberos environment?
      EType: sun.security.krb5.internal.crypto.DesCbcMd5EType
      Krb5Context setting peerSeqNumber to: 723620847
      Krb5Context.unwrap: token=[60 33 06 09 2a 86 48 86 f7 12 01 02 02 02 01 00 00 ff ff ff ff c6 f4 08 8f 55 21 3e 5b 2d ce 1c b5 47 9b cd 2f 2a 83 20 8e 7f c6 00 9b 07 01 00 00 04 04 04 04 ]
      Krb5Context.unwrap: data=[07 01 00 00 ]
      Krb5Context.wrap: data=[04 01 00 00 ]
      Krb5Context.wrap: token=[60 33 06 09 2a 86 48 86 f7 12 01 02 02 02 01 00 00 ff ff ff ff 8f 9e c7 02 a6 b0 75 16 d3 1a c3 53 b1 4d cd e2 b1 41 34 73 f9 36 94 9d 04 01 00 00 04 04 04 04 ]
      java.lang.NullPointerException
           at com.sun.jndi.ldap.LdapClient.ldapBind(LdapClient.java:340)
           at com.sun.jndi.ldap.sasl.LdapSasl.saslBind(LdapSasl.java:123)
           at com.sun.jndi.ldap.LdapClient.authenticate(LdapClient.java:214)
           at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2694)
           at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:293)
           at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
           at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
           at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
           at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
           at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
           at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
           at javax.naming.InitialContext.init(InitialContext.java:223)
           at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:134)
           at sample.JNDIAction.jndiDo(GssExample.java:119)
           at sample.JNDIAction.run(GssExample.java:90)
           at java.security.AccessController.doPrivileged(Native Method)
           at javax.security.auth.Subject.doAs(Subject.java:337)
           at sample.GssExample.main(GssExample.java:65)


      Addl info:
      Contents of krb5.ini file
      [libdefaults]
      default_realm = EXAMPLE.COM
      [realms]
      EXAMPLE.COM = {
      kdc = ldap.example.com:88
      }
      [domain_realm]
      .example.com = EXAMPLE.COM
      example.com = EXAMPLE.COM
      [login]
           krb4_convert = true
           krb4_get_tickets = false


      Please let me know if you need any other details.

      Thanks in advance
      YS