I have a MacBook Pro (Catalina 10.15.2) trying to authenticate to a Windows Server 2016 Domain Controller on the same network via Kerberos.
The domain is single label (for example "CONTOSO", not best practice I know). The MacBook is using DHCP and can ping the domain controller by its name (DNS Is working as expected). I have exported the domain root certificate and imported it to the Mac, and have manually trusted the certificate on the Mac.
The end goal is to use the NOMAD application for authentication to CONTOSO domain, but this relies on Kerberos authentication which is failing for me at present. The error I get in the NOMAD app is "unable to reach any KDC in realm CONTOSO". When I run "klist" in terminal I get "krb5_cc_get_principal: No credentials cache file found". I have created KERB5.CONF file and put in the /etc directory.
Any help would be much appreciated, I've been researching this issue left right and centre. Thank you all.
The domain is single label (for example "CONTOSO", not best practice I know). The MacBook is using DHCP and can ping the domain controller by its name (DNS Is working as expected). I have exported the domain root certificate and imported it to the Mac, and have manually trusted the certificate on the Mac.
The end goal is to use the NOMAD application for authentication to CONTOSO domain, but this relies on Kerberos authentication which is failing for me at present. The error I get in the NOMAD app is "unable to reach any KDC in realm CONTOSO". When I run "klist" in terminal I get "krb5_cc_get_principal: No credentials cache file found". I have created KERB5.CONF file and put in the /etc directory.
Any help would be much appreciated, I've been researching this issue left right and centre. Thank you all.