Directory Studio
  1. Directory Studio
  2. DIRSTUDIO-873

Kerberos encryption types are not saved correctly

    Details

      Description

      We can't change the Encryption Types values in the Kerberos Configuration page. If we do so, we immediately get the following exception when starting the server :

      'The server 'xxxx' cannot be started.
      Cause: ERR_0444_CANNOT_NORMALIZE_VALUE Cnnot normalize the wrapped value ERR_04473_NOT_VALID_VALUE Not a valid value '[des-cbs-md5, rc4-hmac]' for the ...

      It seems that the cofigurator tries to store the value as is.

      If we modify the values by hand in the config.ldif file, for instance :

      dn: ads-serverId=kerberosServer,ou=servers,ads-directoryServiceId=default,ou=config
      ...
      ads-krbEncryptionTypes: des-cbc-md5
      ads-krbEncryptionTypes: rc4-hmac

      then in the GUI, the EncryptionTypes is now : [des-cbc-md5, rc4-hmac]

      So there is an incompatible config/gui transformation that works in the config -> GUI way, but not in the other way.

        Activity

        No work has yet been logged on this issue.

          People

          • Assignee:
            Pierre-Arnaud Marcelot
            Reporter:
            Emmanuel Lecharny
          • Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development