msldap icon indicating copy to clipboard operation
msldap copied to clipboard

Published 20 hours ago verified publisher icon skelsec

Kerberos auth with other forest

Open enj5oy opened this issue 1 year ago • 5 comments

Hi! I have foresta.contoso.local and forestb.contoso.local. I need login with [email protected] to dc1.forestb.contoso.local msldap ldap+kerberos-ccache://foresta\admin:[email protected]/?dc=192.168.2.1 I got error KDC_ERR_WRONG_REALM

enj5oy avatar Nov 16 '23 09:11 enj5oy

Hello, I'm aware of this issue which is a limitation of my mimikerberos library. It is begin updated, and will be pushed in a new release soon(ish)

skelsec avatar Nov 22 '23 14:11 skelsec

Hello, I'm aware of this issue which is a limitation of my mimikerberos library. It is begin updated, and will be pushed in a new release soon(ish)

Thanks for your work!

enj5oy avatar Nov 22 '23 15:11 enj5oy

Hello again. If you install the latest asyauth from git or pip, you will be able to perform this auth avenue!

skelsec avatar Dec 08 '23 19:12 skelsec

Thanks, i will try this on engagement

enj5oy avatar Dec 10 '23 07:12 enj5oy

@skelsec I have ticket to child.contoso.local\lowpriv user and can connect to dc1.contoso.local(192.168.0.3) I try connect with msldap (asyauth==0.0.20) 2024-05-02_08-11

With impacket ticket work 2024-05-02_08-14

enj5oy avatar May 02 '24 05:05 enj5oy