Changes between Version 7 and Version 10 of Ticket #529
- Timestamp:
- 05/29/10 05:32:20 (14 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #529 – Description
v7 v10 13 13 However, it exposed some problems with various password-authenticated services: 14 14 15 * ~~ ca.mit.edudoes not allow me to generate a new MIT certificate.~~ '''FIXED.'''15 * ~~[https://ca.mit.edu/ca/ ca.mit.edu] does not allow me to generate a new MIT certificate.~~ '''FIXED.''' 16 16 * The PO servers do not allow me to log in over IMAP using a password. (Kerberized IMAP still works.) I receive this error using imtest: 17 17 {{{ … … 25 25 Authentication failed. generic failure 26 26 }}} 27 * I cannot log into webmail.mit.edu, presumably as a consequence of the above: 28 {{{ 29 Login failed. 30 }}} 31 * I cannot log into Touchstone services using a password. (Certificate and Kerberos authentication still work.) I receive this error [UPDATED]: 32 {{{ 33 Error: Please enter a valid username and password. 34 35 Click help for assistance. 36 }}} 37 * owa.exchange.mit.edu works fine. 38 * I cannot log in to the MITnet VPN (vpn.mit.edu). It just says “Login error.” 27 * I cannot log in to [https://webmail.mit.edu/ Webmail], presumably as a consequence of the above: “Login failed.” 28 * I cannot log in to [https://idp.mit.edu/idp/Authn/UsernamePassword Touchstone] services using a password (though certificate and Kerberos authentication still work): “Error: Please enter a valid username and password. Click help for assistance.” 29 * ~~[https://owa.exchange.mit.edu/ Outlook Web Access] works fine.~~ 30 * I cannot log in to the [https://vpn.mit.edu/ MITnet VPN] (vpn.mit.edu): “Login error.” 39 31 * I cannot log in to [https://mit-mailsec-cc.mit.edu:41443/brightmail Brightmail]: “Invalid user name or password. Please try again.” 32 * I cannot log in to Windows after starting the Citrix ICA Client from [https://citrix.mit.edu/Citrix/MetaFrameXP/frameset.jsp Citrix MetaFrame XP]: “The system could not log you on. Make sure your User name and domain are correct, then type your password again. Letters in passwords must be typed using the correct case.” 40 33 41 34 Given that single-DES is critically weak, is disabled by default in current releases of Kerberos, and will be removed entirely in future releases, we should talk with network and try to get these little problems worked out sooner rather than later.