The Samba-Bugzilla – Bug 13131
S4U2Proxy requests with encrypted authorization-data are rejected by a Samba KDC
Last modified: 2017-11-14 14:59:56 UTC
Modern Windows versions send encrypted authorization-data a long with
If this is combined with S4U2Proxy requests a Samba (heimdal based) KDC
is unable to decrypt the authorization data from the client.