I try to build a environment for Kerberos Authentication Scheme for Apache Web Server on Windows 2008R2
My environment are
AD & DNS windows 2008 SP1
Policy Server R12.5 windows 2008 SP1 (Host Name is POLISERVER)
Web Agenet R12.5
Apache Web Server on windows 2008R2 (Host Name is APHSERVER)
I create two account service name ,generate & deploy two keytab files
policy server : kbssmuser (service principal is smps/POLISERVER.abc.com)
web server : kbsapserver (service principal is HTTP/APHSERVER.abc.com)
ACO configuration
httpserviceprincipal='HTTP/
APHSERVER.abc.com@ABC.COM'.
smpsserviceprincipal='smps/
POLISERVER.abc.com@ABC.COM'.
But I try to verify the protect resource url
The Apahce Web Server return 500 error code
The WebAgent Trace log return error message : Failed to validate remote GSSAPI token: Key table entry not found
How do I fix the problem ?
Regards,
Tommy