4 This is the first preview release of Samba 4.6. This is *not*
5 intended for production environments and is designed for testing
6 purposes only. Please report any defects via the Samba bug reporting
7 system at https://bugzilla.samba.org/.
9 Samba 4.6 will be the next version of the Samba suite.
19 kerberos client encryption types
20 --------------------------------
21 Some parts of Samba (most notably winbindd) perform Kerberos client
22 operations based on a Samba-generated krb5.conf file. A new
23 parameter, "kerberos encryption types" allows configuring the
24 encryption types set in this file, thereby allowing the user to
25 enforce strong or legacy encryption in Kerberos exchanges.
27 The default value of "all" is compatible with previous behavior, allowing
28 all encryption algorithms to be negotiated. Setting the parameter to "strong"
29 only allows AES-based algorithms to be negotiated. Setting the parameter to
30 "legacy" allows only RC4-HMAC-MD5 - the legacy algorithm for Active Directory.
31 This can solves some corner cases of mixed environments with Server 2003R2 and
42 Parameter Name Description Default
43 -------------- ----------- -------
44 kerberos encryption types New all
52 #######################################
53 Reporting bugs & Development Discussion
54 #######################################
56 Please discuss this release on the samba-technical mailing list or by
57 joining the #samba-technical IRC channel on irc.freenode.net.
59 If you do report problems then please try to send high quality
60 feedback. If you don't provide vital information to help us track down
61 the problem then you will probably be ignored. All bug reports should
62 be filed under the Samba 4.1 and newer product in the project's Bugzilla
63 database (https://bugzilla.samba.org/).
66 ======================================================================
67 == Our Code, Our Bugs, Our Responsibility.
69 ======================================================================