on 04-20-2012 5:28 PM
Hi dear community,
I try to install Windows AD authentication for SAP BusinessObjects XI 4.0 SP02 patch 14 (version 641), installed on Windows Server 2008 R2 Standard Service Pack 1 (serveurBO), and an Apache Tomcat 6.0.24.
I've also an other serveur for my Domain Control AD (serveurAD)
At the step where I've to execute in my serveurBO --> C:\Program Files (x86)\SAP BusinessObjects\SAP BusinessObjects Enterprise XI 4.0\win64_x64\jdk\bin>kinit my_service in the command prompt, after I enter my password, I've the error :
Password for my_service@DOMAIN.com:
Exception: krb_error 0 Cannot get kdc for realm DOMAIN.com No error
Krb Exception: Cannot get kdc for realm DOMAIN.com
at sun.security.krb5.KrbKdcReq.send(KrbKdcReq.java:133)
at sun.security.krb5.KrbKdcReq.send(KrbKdcReq.java:106)
at sun.security.krb5.internal.tools.Kinit.sendASRequest(Kini.java:298)
at sun.security.krb5.internal.tools.Kinit.<init>(Kinit.java:237)
at sun.security.krb5.internal.tools.Kinit.main(Kini.java:107)
I've searched solutions on the SCN and the Net, soI try to change encryption parameter, DOMAIN.com, DOMAIN.COM, domain.com...., in my C:\WindowsKrb5.ini files, always the same error...
Here is my Krb5.ini files:
[libdefaults]
default_realm = DOMAIN.com
dns_lookup_kdc = true
dns_lookup_realm = true
udp_preference_limit = 1
default_tgs_enctypes = DES-CBC-MD5
default_tkt_enctypes = DES-CBC-MD5
[realms]
DOMAIN.com {
kdc = serveurAD.DOMAIN.com
default_domain = DOMAIN.com
}
Advices ? solutions ? Ideas ?
I take all !
Regard.
I had this problem too. I ran the set command logged into the server as a domain user and looked for the value after "LOGONSERVER=\\" Once I matched it this error went away for me. Here is my working example. The names were changed to protect the innocent.
[libdefaults]
default_realm = DOMAIN.COM
dns_lookup_kdc = true
dns_lookup_realm = true
default_tgs_enctypes = rc4-hmac
default_tkt_enctypes = rc4-hmac
udp_preference_limit = 1
[realms]
DOMAIN.COM = {
kdc = LOGONSERVER.DOMAIN.COM
default_domain = DOMAIN.COM
}
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.