I’ve read and made many tests before that post… So I really hope to find some help.
I have 1 Domain controler dccommundev1 for my test domain COMMUNDEV1.FR (w2k3 standard with JRE 6 upd12 ) and 1 Win 2003 hosting Openfire v3.6.2 with JRE 6 upd11 named openfire1.
I have configured SSO on the servers according to the following tutorials :
I am able to make SSO works ONLY if I check the box “Remember password” on spark logon windows and activate SSO after. For me it is not real SSO… Because for a “new” client if I don’t save the password and directly activate the SSO I get the error "Unable to connect using Single Sign-On. Please check your principal and server settings (attached file).
I can’t make Spark work without the credential cache… Is it possible ? How ?
I’ve attached the krb5.ini, the gss.conf and my openfire SASL config. I’ve generated the keytab with both Java and windows tool with no success…
I did not activated the LDAPS or TLS. I don’t force the use of SSL between client/openfire and openfire/Active Directory