[3799] 1621592188.385858: Getting initial credentials for [email protected]
[3799] 1621592188.385860: Sending unauthenticated request
[3799] 1621592188.385861: Sending request (193 bytes) to EXAMPLE.COM
[3799] 1621592188.385862: Initiating TCP connection to stream 1.2.3.4:88
[3799] 1621592188.385863: Sending
[3799] 1621592188.385865: Terminating TCP connection to stream 1.2.3.4:88
[3799] 1621592188.385866: Response was from master KDC
[3799] 1621592188.385867: Received error from KDC: -1765328359/Additional pre-authentication required
[3799] 1621592188.385870: Preauthenticating using KDC method data
Thorsten Scherf tscherf
tscherf
/ kinit_trace.md
Last active
May 21, 2021 11:27
#!/usr/bin/env bash
fzf_command="/usr/bin/fzf"
# looks for mailbox in ~/Maildir/work and ~/Maildir/personal/
fd_command="find $HOME/Maildir/ -maxdepth 2 -type d"
folder="$($fd_command | $fzf_command)"
Signing
simple bind over insecure channel
# ldapsearch -xLLL -H ldap://ad1.win2016.test -b 'DC=win2016,DC=test' -D 'CN=Administrator,CN=Users,DC=win2016,DC=test' -W samaccountname=Administrator DN
Enter LDAP Password:
ldap_bind: Strong(er) authentication required (8)
additional info: 00002028: LdapErr: DSID-0C090256, comment: The server requires binds to turn on integrity checking if SSL\TLS are not already active on the connection, data 0, v3839
tscherf
/ event_id_2889.md
Last active
February 26, 2020 10:04
The following client performed a SASL (Negotiate/Kerberos/NTLM/Digest) LDAP bind without requesting signing (integrity verification), or performed a simple bind over a cleartext (non-SSL/TLS-encrypted) LDAP connection. Client IP address: "Value" Identity the client attempted to authenticate as: "Value"