Which KDC?
From: Danny Cooper (danny.cooper@bbc.co.uk)
Date: 08/28/02
- Next message: Jason Ede: "Re: HELP! Event error ID 1202 & 1000 appearing in the server logs every 5 minutes."
- Previous message: Eric: "From a PKCS7 file to a Certificate..How?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Danny Cooper <danny.cooper@bbc.co.uk> Date: Wed, 28 Aug 2002 15:44:00 +0100
We recently moved location, where each location is covered by
different Sites, but both have DCs of the same domain.
I would have thought that the KDC being used by the machines that
moved would now be the DC at the new Site... but it isn't, it's the
KDC on the DC on the old Site.
Looking with NETMON I don't see any DNS lookup going on to find a KDC,
it just goes straight into talking kerberos to the other Site's DC.
What was even odder is that if I removed all reference to the old DC
from the DNS the client is looking at (I pointed it to a primary so I
could safely delete the entries) then NETMON didn't show it trying to
talk to the old DC (as I would have expected) but going straight to
the KDC on the now local DC of the new Site.
How is KDC location supposed to work? I can't seem to find any
documentation on what is supposed to happen.
Danny.
- Next message: Jason Ede: "Re: HELP! Event error ID 1202 & 1000 appearing in the server logs every 5 minutes."
- Previous message: Eric: "From a PKCS7 file to a Certificate..How?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
