krb5-lib gives false error while changing password "Requested protocol version not supported" in case of failover

Solution Verified - Updated -

Issue

In environment with two MS active directory servers (Windows 2008 R2) working in failover and RHEL5 client authenticating against them, when one of AD
servers goes down, changing password through kpasswd/passwd fails with (wrong) error.

-sh-3.2$ passwd
Changing password for user wuser2.
Kerberos 5 Password:
New UNIX password:
Retype new UNIX password:
passwd: Authentication token manipulation error

$ kpasswd
Password for wuser1@EXAMPLE.COM:
Enter new password:
Enter it again:
requested protocol version not supported changing password.

Environment

  • RHEL 5
  • krb5-libs-1.6.1-36.el5_5.6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content