krb5-lib gives false error while changing password "Requested protocol version not supported" in case of failover

Solution Verified - Updated -

Issue

In environment with two MS active directory servers (Windows 2008 R2) working in failover and RHEL5 client authenticating against them, when one of AD
servers goes down, changing password through kpasswd/passwd fails with (wrong) error.

-sh-3.2$ passwd
Changing password for user wuser2.
Kerberos 5 Password:
New UNIX password:
Retype new UNIX password:
passwd: Authentication token manipulation error

$ kpasswd
Password for wuser1@EXAMPLE.COM:
Enter new password:
Enter it again:
requested protocol version not supported changing password.

Environment

  • RHEL 5
  • krb5-libs-1.6.1-36.el5_5.6
    

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.