SSO + wna falls into KDC_ERR_S_PRINCIPAL_UNKNOWN
436586Mar 7 2007 — edited Dec 20 2007Hi,
I configured SSO + wna (OAS 10.1.2.0.2(oid, sso) on RHEL3 U4, active directory, IE5 on win2k). Everything looks fine (kerberos configured properly as well as SSO, AD-OID sync.). But when I try login through sso, IE shows sso login form, kerberos ticket is not used.
KDC log error KDC_ERR_S_PRINCIPAL_UNKNOWN appears in event viewer, IE tries NTLMSSP authentication. Any suggestion what's going wrong?
Thx.
William
Event log:
A Kerberos Error Message was received:
on logon session InitializeSecurityContext
Client Time:
Server Time:
Error Code: 12:39:28.0000 3/7/2007 (null) 0x7
Extended Error: KDC_ERR_S_PRINCIPAL_UNKNOWN
Client Realm:
Client Name:
Server Realm: REALM
Server Name: krbtgt/REALM
Target Name: ssoHost.domain$@REALM
Error Text:
File:
Line:
Error Data is in record data.