Manualshelf

HP CIFS Server and Kerberos

ManualsBrandsHP ManualsSoftwareHP-UX Common Internet File System (CIFS) Client/Server Software
31323334353637383940
37
Windows XP SP1 client presents service ticket for \\atcux5\buffy to the HP CIFS Server (Samba).
Command: none.
The client presents the service ticket (acquired in the transaction with the KDC that is displayed on the
previous page) to the HP CIFS Server (Samba). The service ticket for \\ATCUX5\BUFFY (see the
Wireshark trace record 1497) is encrypted with DES-CBC-MD5. MD5 is the encryption type that
Samba uses, and cannot be affected by the HP-UX krb5.conf enctype configuration.
The HP CIFS Server log entry is (grep crypt log.netbiosname):
ads_secrets_verify_ticket: enc type [3] decrypted message !
Notice that the HP CIFS Server only logs the MD5 decryption event in this case. This is different
observed behavior from the same test when conducted with the newer HP-UX Kerberos Client 1.3.5.
CRC Summary:
HP-UX 11i
HP CIFS Server A.02.01 (Samba 3.0.7 with 3.0.8 backports)
HP-UX Kerberos Client version 1.0
Windows XP SP1 client
Windows 2000 Advanced Server Enterprise Edition KDC and Active Directory domain