HI,
We are using SSO with MediaWIKI 1.25.3 with PHP 5.3.3 (apache2handler) , MySQL 5.1.73
Here, the issue is now we are facing kerberos authentication failure issue due to not using all below encryption types while generating the keytab.
Because, now IT infrastructure/AD team not allowed to use below mentioned weak encryption types while generating keytab.
Also it's being denied for the corporate policy. And we are only allowed to use below mentioned couple of strong encryption types.
N.B. Before the Kerberos authentication was working fine when the keytab is encrypted with all below 5 types of encryption methods.
Could someone please advise to resolve the kerberos authentication issue with an alternate solution would be greatly appreciated?
Weak encryptions:
DES-CBC-CRC | DES-CBC-MD5 | RC4-HMAC-NT
Strong encryptions:
AES256-SHA1 | AES128-SHA1
Thank you in Adv..
Sanjay