Troubleshooting
Administrative Error MessagesAdministrative Error MessagesFollowing are some messages that administrative principals may see when using their accounts. This section also contains some recommended solutions.
Password Has Expired While Getting Initial TicketExplanation: This message may appear when a user tries to log on as a remote administrator using the remote
Remote
Action:
If you set the Change Password Required attribute, use the local administrator, kadminl_ui, to disable the Require Password Change option for the administrative principal to be used for remote administration.
•If you are using the HP Kerberos Administrator, select the Principal Information>Attributes tab and clear the Require Password Change checkbox.
•If you are using the
Explanation: This message may appear when a user tries to log on to the remote administrator. It also may occur while using the kinit and kpasswd utilities. It means that the user is trying to use a key type that is different than the one assigned to the user in the principal database, in other words, DES versus 3DES. By default, the HP Kerberos Administrator and
306 | Chapter 11 |