Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1848 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ADSSO - Kerberos failed. NTLM works

schmiegi

Hi :)

Customer has received an XGS-FW, previously used a SG.
AD SSO was set up at orientation of Sophos-Com contribution. (docs.sophos.com/.../index.html

The following problem:

NTLM-Auth works without problems
KERBEROS fails: "Cannot initalize...".

NASM log says the following.

[nasm] initialize_kerberos(): realm = XXXX.LOCAL
Dec 02 10:06:58.761799Z [nasm] system configured hostname [XX-XGS01]
Dec 02 10:06:58.762319Z [nasm] initialize_kerberos(): gss_acquire_cred HOST/XX-XGS01@XX.LOCAL: No key table entry found for HOST/XX-XGS01@XXX.LOCAL

Does anyone have an idea ?

Translated with www.DeepL.com/Translator (free version)



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to schmiegi

    Hello  ,
    On the CLI, select option 5. Device Management, then option 3. Advanced Shell.
    can you perform the following steps:
    1.) Stop the NASM service: #service nasm:stop -ds nosync
    2.) Remove file /content/nasm: #rm -rf /content/nasm
    3.) Start the NASM service: #service nasm:start -ds nosync

Children