Hi Patrick,
i had setup to service accounts in AD DC. One for smps service in Liunx and one for Linux host.
Then generated 2 SPN's and 2 keytabs.
Validations in Linux server:
1. was able to login to linux server using both the service accounts.
2.klist -spn command for both SPN's work in Linux host.
3.But kinit command works for first smps keytab only and not for linux host keytab.
We were able to validate
first keytab and SPN (svckrbsmps.keytab) successfully from Linux server.
kinit -V -k -t svckrbsmps.keytab smps/FQDN@***.COM
Result: NO Error and taking password and connecting.
Second keytab failing. We get below error.
kinit -V -k -t svckrbhost.keytab host/FQDN@***.COM
kinit: Client not found in Kerberos database while getting initial credentials .
Is this expected for host keytab file? Any thoughts?
Results are same even for merged keytab file.
Thanks,
Srinivas.