The Samba-Bugzilla – Bug 5367
W2K8 and Vista can't join s4 with AES kerberos
Last modified: 2009-03-24 07:24:13 UTC
W2K8 cannot currently join to S4. The following attachment provides captures of W2K8 joining W2K8, W2K3, and S4 domains for comaprison and analysis.
Created attachment 3232 [details]
Captures of W2K8 joins to different DC's
Is there any progress on this bug?
This is the same bug we have with Vista joining, and negotiating an AES session key.
We know how to support this in our server, but are blocking on matching (otherwise we break Samba->Samba) support in our client.
Further to this, we need to support AEAD in the GSSAPI libs, for the next blocking point.
This is fixed now