now I need to configure ADsso. can anyone check the ktpass command and suggest me it is correct or not?
environment is here..
Number of DCs = 3
OS of DCs = windows 2008 standard (SP2)
AD domain functionality = Mixed mode with 2003
Domain name = laxman.com
Domain user name = ssouser
KTpass.exe version = 6.0.6003.28006
Command is here
1. ktpass –princ [email protected] -mapuser ssouser -pass password123 -out c:\output.keytab –ptype KRB 5_NT_PRINCIPAL +DesOnly
2. ktpass –princ [email protected] -mapuser ssouser -pass password123 -out c:\output.keytab –ptype KRB5_NT_PRINCIPAL
3. ktpass –princ [email protected] -mapuser ssouser -pass password123 -out c:\output.keytab –ptype KRB5_NT_PRINCIPAL
Mahmoud is right. Certain versions of 2k8 are supported only.
List here: http://bit.ly/AD_SSO_Compatibility
I've been working on this a simillar case since a month!!
I don't want you to wate your time!
AD2008 Standard is not supported.....this is it!!
Cisco said it is not tested for 2008 standard, but beleive me, with this TAC case opened for a month, and no answer from the development team till now! You better try 2008 Enterprise.
I tried AD2008 Enterprise R2, and it works like magic!
Hope this will help.
Have a lovely day