Kerberos + LTM ==> problem manual chapter

Hi,

 

 

Have anyone tried to configure LTM + Kerberos using "Manual Chapter:Configuring Kerberos Delegation". For me this solution written in this manual doesn't work. I tried to make BIG-IP to work as a proxy server for Kerberos. I tried using 2008 R2 and 2003 as a domain controler. Everytime in BIG-IP Log i see the following messages

 

 

Apr 25 09:33:19 local/f5s3 err tamd: pam_krbdelegate(mod_auth_kerb): gss_accept_sec_context() failed: An unsupported mechanism was requested (Unknown error)

 

Apr 25 09:33:19 local/f5s3 err tamd: pam_krbdelegate(mod_auth_kerb): Failure to extract credentials from client. Denying user

 

Apr 25 09:33:19 local/f5s3 err tamd: pam_krbdelegate(mod_auth_kerb): gss_accept_sec_context() failed: An unsupported mechanism was requested (Unknown error)

 

Apr 25 09:33:19 local/f5s3 err tamd: pam_krbdelegate(mod_auth_kerb): Failure to extract credentials from client. Denying user

 

Domaintool coomand ended with success, i checked that in domain was created computer system with correct spns.

 

 

I'm not an expert and maybe i made somewhere a mistake but I don't know what else i should check.

 

Thanks for any advice, Best Regards - Przemek