Technology Tips and News
hello,
when authenticating via kcd, the windows server is showing the mapped domain user name ( as in the mapuser parameter from ktpass) as the logged in user rather than the user that the user ticket was requested for.
Any explanation for this behavior or Is there any server side configuration to modify this?
when authenticating via kcd, the windows server is showing the mapped domain user name ( as in the mapuser parameter from ktpass) as the logged in user rather than the user that the user ticket was requested for.
Hi,
By "kcd", do you mean "KDC"?
In addition, would you tell us that where/how did you see "the windows server is showing the mapped domain user name ( as in the mapuser parameter from ktpass) as the logged in user rather than the user that the user ticket was requested for"?
Best Regards,
Amy
hello.
by KCD I mean kerberos constrained delegation.
but yes, of course I'm getting valid ticket from the KDC on behalf of the user (client that is actually logging on).
iis logs on the windows server shows the mapped domain user rather than the real client creds,
In the case of sharepoint it even displays this user.
Let me know if I can provide more informatione,
Kind Regards.
This topic is archived. No further replies will be accepted.
Other recent topics
Click here to get your free copy of Network Administrator. Over 25 plugins to make your life easier