C
Christine_kh
Guest
Hi All,
I have strange problem with InitializeSecurityContext in trusted domain
environment. We use it for GSSAPI authentication of trusted domain users.
I have two trusted (both directions) domains, DC - Win2003, let's say A and B.
There are user 'alice' which is member of domain A and user 'bob' which is
member of domain B. Both users can log in interactively on machines from
other trusted domains (so 'alice' can be logged in on machines from B and
'bob' on A without any problems)
When I use function InitializeSecurityContext(..) from machine which is
member of domain A and I am logged in on it as user 'alice' - it works OK
with pszTargetName='host\'machine_name'.B.ssh.com'.
The problem is: If I am logged in on the same machine as user 'bob' (trusted
domain's user) and I am using the same target machine as parametr, function
failes with 'SEC_E_TARGET_UNKNOWN'.
Could somebody help me with it? Any help is very very appreciated
I suspected first that it was some trouble with DNS-server, I tried to copy
DNS-zone of from DNS-server on domain B to DNS-server on domain A but it
didn't help me
Is this pszTargetName specified correctly or it should be different for
trusted domain's user?
--Christine
I have strange problem with InitializeSecurityContext in trusted domain
environment. We use it for GSSAPI authentication of trusted domain users.
I have two trusted (both directions) domains, DC - Win2003, let's say A and B.
There are user 'alice' which is member of domain A and user 'bob' which is
member of domain B. Both users can log in interactively on machines from
other trusted domains (so 'alice' can be logged in on machines from B and
'bob' on A without any problems)
When I use function InitializeSecurityContext(..) from machine which is
member of domain A and I am logged in on it as user 'alice' - it works OK
with pszTargetName='host\'machine_name'.B.ssh.com'.
The problem is: If I am logged in on the same machine as user 'bob' (trusted
domain's user) and I am using the same target machine as parametr, function
failes with 'SEC_E_TARGET_UNKNOWN'.
Could somebody help me with it? Any help is very very appreciated
I suspected first that it was some trouble with DNS-server, I tried to copy
DNS-zone of from DNS-server on domain B to DNS-server on domain A but it
didn't help me
Is this pszTargetName specified correctly or it should be different for
trusted domain's user?
--Christine