msldap kerberos auth not work

skelsec / msldap

LDAP library for auditing MS AD

Other

357 stars 65 forks source link

Open enj5oy opened 4 months ago

enj5oy commented 4 months ago

minikerberos-getTGT can request tgt 2024-05-01_23-43

msldap can't auth to dc with ldap+kerberos auth 2024-05-01_23-42

skelsec commented 4 months ago

Hello! I see the following issues:

You are using password based kerberos authentication in your screenshot but in your text you say you want to use the TGT.
You are not using the hostname of the target server, but the IP address. Kerberos protocol requires the FQDN of the target server.

The sample should read like this: msldap ldap+kerberos-kirbi://DOMAIN\\username@HOSTNAME/?dc=IP_OF_DC

enj5oy commented 4 months ago

Thanks, all work. Maybe change this information in help? 2024-05-02_07-53