I'm trying to join Ubuntu Server 16.04.3 (fresh install) join to AD follow the guide https://www.starwindsoftware.com/blog/ubuntu-join-a-server-to-an-active-directory-domain
The /etc/krb5.conf contant is following:
[libdefaults]
ticket_lifetime = 24000
default_realm = mydomain.local
default_tgs_entypes = rc4-hmac des-cbc-md5
default_tkt__enctypes = rc4-hmac des-cbc-md5
permitted_enctypes = rc4-hmac des-cbc-md5
dns_lookup_realm = true
dns_lookup_kdc = true
dns_fallback = yes
[realms]
mydomain.local = {
kdc = pdc.mydomain.local
kdc = sdc.mydomain.local
default_domain = pdc.mydomain.local
}
[domain_realm]
.mydomain.local = pdc.mydomain.local
mydomain.local = pdc.mydomain.local
[appdefaults]
pam = {
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
}
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
Running sudo kinit domainuser
I recieve the error: kinit: Improper format of Kerberos configuration file while initializing Kerberos 5 library. Googling I found CentOS7 Kerberos Auth: Improper format of Kerberos configuration file; . I have already checked the /etc/krb5.conf syntax which has no mistakes.
Best Answer
Perhaps a simpler config for troubleshooting? (Also, pay attention to the capitalization, it is very important even though it may look arbitrary.)
If this works, you can start adding the other settings back until something breaks.