| Home | Forums | Reviews | Articles | Register |
 |
| Thread Tools |
Rating: 
|
|
Guest
Posts: n/a
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
|
|
|
|
||
|
|
| |
|
Guest
Posts: n/a
|
|
|
|
|
||
|
Guest
Posts: n/a
|
|
|
|
|
||
|
Guest
Posts: n/a
|
I tried to check all possibilties but nothing helps.  "Michael Sword" wrote: > Try enabling AES128_HMAC_SHA1 > > "Mirek Endys" wrote: > > > It is not working. > > I set the policy to use DES-CBC-MD5 (nothing else from the list of > > possibilities), but iSeries Access still says, that Kerberos Pricipal has not > > been found. > > > > But thanks a lot... Any other idea? > > > > Mirek > > > > "Ricciopasticcio" wrote: > > > > > Hi, this kb is about new implementation of kerberos > > > > > > http://technet.microsoft.com/en-us/library/dd560670(WS.10).aspx > > > > > > Changes in Kerberos Authentication > > > Updated: March 9, 2009 > > > This product evaluation topic for the IT professional describes the > > > cryptographic enhancements to Microsoft's implementation of Kerberos version > > > 5 (v5) in Windows 7 and Windows Server 2008 R2. > > > Cryptographic support for Kerberos in Windows 7 and Windows Server 2008 R2 > > > The following cipher suites are supported in Windows 7 and Windows Server > > > 2008 R2: > > > • AES256-CTS-HMAC-SHA1-96 > > > • AES128-CTS-HMAC-SHA1-96 > > > • RC4-HMAC > > > • DES-CBC-MD5 > > > • DES-CBC-CRC > > > Both DES cipher suites are disabled by default in Windows 7. > > > Enabling DES encryption types for Kerberos > > > In Windows 7 and Windows Server 2008 R2, you must configure your computers > > > to use the DES-CBC-MD5 or DES-CBC-CRC cipher suites. These settings might > > > affect compatibility with client computers or services and applications in > > > your environment. > > > The Configure encryption types allowed for Kerberos policy setting is > > > located in Computer Configuration\Security Settings\Local Policies\Security > > > Options. > > > ECC support in Kerberos for smart card logon > > > In Windows 7 and Windows Server 2008 R2, Kerberos supports elliptic curve > > > cryptography (ECC) for smart card logon that uses X.509 certificates. > > > Although this change is not visible to end users, they will benefit from > > > stronger cryptography for their smart card logons. There is no configuration > > > required to obtain ECC support in Kerberos. However, your smart cards and > > > readers must support ECC. > > > > > > with AS400 U have to use DES-CBC-MD5 > > > > > > "Mirek Endys" wrote: > > > > > > > Hello, > > > > > > > > I tried to find the answer of my question about differencies of the kerberos > > > > in Win7 and Vista. > > > > Why? I have problem with kerberos and iSeries Access software used for the > > > > connection to the IBM/AS400 system > > > > > > > > on the Vista, Windows 2003 Server, Windows XP i can use the kerberos without > > > > problem. iSeries Access log me in immediately. But in Windows 7 the IBM > > > > system says, that kerberos principals has not been found. But Im able to use > > > > kerberos with the same user account from other systems. Where is the problem? > > > > > > > > Thanks for help |
|
|
|
|
|||
|
|
| |
|
| Thread Tools | |
| Rate This Thread | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Excel 2007 vs. 2003 differencies for custom format [h]:mm:ss | Dmitriy Shapiro | Microsoft Excel Programming | 3 | 17th Mar 2009 12:30 AM |
| Kerberos error from Vista workstations | =?Utf-8?B?RGFuIExlcGluZQ==?= | Windows Vista Security | 0 | 21st Jul 2006 09:35 PM |
| XP home and Professainal differencies | =?Utf-8?B?c2VyZ2UgY2FsZGVyYXJh?= | Windows XP General | 11 | 11th Jan 2005 02:54 AM |
| differencies between cache and session | sizheng | Microsoft Dot NET | 1 | 9th Jun 2004 10:03 PM |
| Kerberos tickets are taking me down.. Help Many servers Fail Kerberos netdiag test... | Scott Townsend | Microsoft Windows 2000 Active Directory | 3 | 22nd Apr 2004 07:40 PM |
