No results were found in the Active Directory after the mskutil command
Published: April 17, 2024 - 11:45 AM
Good morning,
WAPT2.5 / Debian 12 Bookworm
The problem I'm describing occurs on my production Windows domain controller + WAPT 2.5
I have also just installed a Hyper-V on a new test domain controller under Windows Server 2022 and a fresh installation of Debian 12 / WAPT 2.5 and I am observing the same problem.
Following @sfonteneau's recommendations, I used the libnginx-mod-http-auth-spnego package which can be found here:
https://wapt.tranquil.it/debian/wapt-2. ... th-spnego/
I'm not getting any updates from my WPAT server "srv-wapt" in the "prosioning" folder I created. I followed the It-Connect tutorial, which I had already used for WAPT 2.3.
I even tested with another organizational unit folder (I gave the rights to the "wapt" account on both folders (delegation of control for the wapt account with only objects of type "computers" with creation/deletion in "create" permissions for all child objects).
When I enter my kinit wapt (+password): no error
Then Klist correctly gives me the Kerberos ticket for the wapt account:
Next, I enter the two commands:
Then :
And nothing happens in the "provisioning" folder or any other test folder (even though I've done it before with WAPT 2.3). I'm waiting for the srv-wapt machine to register there with the description "host account for wapt server" 
If I try to go a little further (installing Waptconsole on a Windows machine), I log in to the "waptconsole" configuration, the server address is OK, the username and password are correct, and I then get this error message:
If anyone has any leads, I'm all ears.
THANKS.
Gregory.
WAPT2.5 / Debian 12 Bookworm
The problem I'm describing occurs on my production Windows domain controller + WAPT 2.5
I have also just installed a Hyper-V on a new test domain controller under Windows Server 2022 and a fresh installation of Debian 12 / WAPT 2.5 and I am observing the same problem.
Following @sfonteneau's recommendations, I used the libnginx-mod-http-auth-spnego package which can be found here:
https://wapt.tranquil.it/debian/wapt-2. ... th-spnego/
I'm not getting any updates from my WPAT server "srv-wapt" in the "prosioning" folder I created. I followed the It-Connect tutorial, which I had already used for WAPT 2.3.
I even tested with another organizational unit folder (I gave the rights to the "wapt" account on both folders (delegation of control for the wapt account with only objects of type "computers" with creation/deletion in "create" permissions for all child objects).
When I enter my kinit wapt (+password): no error
Then Klist correctly gives me the Kerberos ticket for the wapt account:
Code: Select all
root@srv-wapt:~# klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: wapt@ADTEST.LOCAL
Valid starting Expires Service principal
17/04/2024 11:14:59 17/04/2024 21:14:59 krbtgt/ADTEST.LOCAL@ADTEST.LOCAL
renew until 18/04/2024 11:14:52
17/04/2024 11:16:54 17/04/2024 21:14:59 ldap/serv2022adtest.adtest.local@
renew until 18/04/2024 11:14:52
Ticket server: ldap/serv2022adtest.adtest.local@ADTEST.LOCAL
17/04/2024 11:16:54 17/04/2024 11:18:54 kadmin/changepw@ADTEST.LOCAL
renew until 17/04/2024 11:18:54Code: Select all
msktutil --server Serv2022ADTEST.adtest.local --precreate --host $(hostname) -b ou=Provisioning,dc=adtest,dc=local --service HTTP --description "host account for wapt server" --enctypes 24 -NCode: Select all
msktutil --server Serv2022ADTEST.adtest.local --auto-update --keytab /etc/nginx/http-krb5.keytab --host $(hostname) -NIf I try to go a little further (installing Waptconsole on a Windows machine), I log in to the "waptconsole" configuration, the server address is OK, the username and password are correct, and I then get this error message:
If anyone has any leads, I'm all ears.
THANKS.
Gregory.