"kinit -R" command no longer works on Red Hat Enterprise Linux.

Solution Verified - Updated -

Issue

  • kinit -R command no longer works on RHEL after installation of patch KB4594441 on Active Directory.
[bob@example ~]$ klist -f
Ticket cache: FILE:/tmp/krb5cc_475
Default principal: bob@EXAMPLE.COM

Valid starting       Expires              Service principal
01/11/2021 11:46:54  01/11/2021 18:49:27  krbtgt/EXAMPLE.COM@EXAMPLE.COM
        Flags: FfA
  • This creates problems with all tasks that are longer than 10 hours because the kinit –R command no longer works.
[bob@example ~]$ kinit -R
kinit: KDC can't fulfill requested option while renewing credentials
  • Destruction of the ticket with kdestroy and subsequent creation with kinit also created a non-renewable ticket.

Environment

  • Red Hat Enterprise Linux 7.9
  • Active Directory patch - KB4594441

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content