HP CIFS Server and Kerberos

49
Notice that the HP CIFS Server tried to decrypt the ticket using a number of different encryption types
before successfully using DES-CBC-MD5 [3]. Values are in decimal. Windows event log values are in
hex.
CRC Summary:
HP-UX 11i
HP CIFS Server A.02.01 (Samba 3.0.7 with 3.0.8 backports)
HP-UX Kerberos Client version 1.3.5
Windows XP SP1 client
Windows 2000 Advanced Server Enterprise Edition KDC and Active Directory domain
HP-UX command line operations using the Windows administrator user are authenticated using CRC,
and a combination of CRC and MD5 (for the “net ads join”) encryption. The Windows client user itself
is authenticated using RC4-HMAC encryption, but the service ticket for the HP CIFS Server share is
encrypted using MD5. The Windows 2000 KDC event *ALWAYS* shows MD5 for the HP CIFS Server
share in these test cases – regardless of the HP-UX enctype configuration.