There is an issue in the GSSAPI/Kerberos implementation.
I want my JIDs to be:
and not
username@mail.gurulabs.com (which is the actual host running Wildfire at the moment)
I have DNS SRV records setup to point at the actual host such as:
xmpp-client.tcp IN SRV 5 0 5222 mail.gurulabs.com.
In Wildfire GSSAPI/Kerberos auth DOES WORK if I set xmpp.domain = “mail.gurulabs.com” but if I set xmpp.domain = “gurulabs.com” (which I believe is what I need to do so I have my JIDs like I want them) then it does not work and I get the following error:
javax.security.sasl.SaslException: Failure to initialize security context Caused by GSSException: No valid credentials provided (Mechanism level: Failed to find any Kerberos Key)
at com.sun.security.sasl.gsskerb.GssKrb5Server.(GssKrb5Server.java:78)
… 8 more
Jay Kline was able to reproduce and verify this problem. For know I have to stick with jabberd2, but I would like to migrate to Wildfire as soon as this problem is fixed.
Can there be an issue opened to track this problem? (you might make it related to JM-281.