Kerberose can't get get user ticket, KDC not seeing any traffic from APM
Kerberose can't get get user ticket.
We are getting the error Kerberos cant get user ticket, client not found in database.
We are using constrained delgation 1. Where we have a service accoutn name as HOST/ 2. We are delegating the SPN HTTP/poc.abc.com on it. Constrained delegation is added. 3. We are using Account name in SSO profile as HOST/test.abc.com@ABC.COM 4. Realm ABC.COM
KDC filed is blank and KDC and realm are specified statically in the KRB5.CONF file.
While checking we are not even seeing the hits on mentioned KDC from F5 for kerberos ticket.
But when I do a general check for the account test.abc.com using kinit I get the kerberos ticket for this account. kinit test.abc.com@ABC.COM
Is anyonve aware how we can test if the APM is actually send the kerberos request out, to what KDC(we have 5 KDC configured].