Gday
I want to change to use Windows AD-integrated Kerberos authentication,
and have changed a server to KRB_SERVER_ENCRYPT for trial. Recataloged
the database at a client machine.
As far as I can tell, everything is in the right place (and seems to be
mostly set up automatically under Windows).
Attempting to connect without specifying name/password gives:
SQL30082N Attempt to establish connection failed with security reason
"26" ("SERVER SECURITY PLUGIN ERROR"). SQLSTATE=08001
The server event log contains:
2006-11-08-11.53.57.247000 Instance:DB2 Node:000
PID:3708(db2syscs.exe) TID:4728 Appid:*LOCAL.DB2.061108005252
bsu security sqlexSlsGssPluginAuthenticate Probe:45 Database:G13PDTA
ADM13000E Plug-in "IBMkrb5" received error code "1" from the GSS
(Generic Security Service) API "gss_accept_sec_context" with the error
message "".
Both server and client are version 8.1.10
Server Windows2003, DB2 Express
Client WindowsXP
Any clues?