creds,
expected_error,
target_creds,
- etype):
+ etype,
+ expected_ticket_etype=None):
user_name = creds.get_username()
cname = self.PrincipalName_create(name_type=NT_PRINCIPAL,
names=user_name.split('/'))
till = self.get_KerberosTime(offset=36000)
ticket_decryption_key = (
- self.TicketDecryptionKey_from_creds(target_creds))
+ self.TicketDecryptionKey_from_creds(target_creds,
+ etype=expected_ticket_etype))
expected_etypes = target_creds.tgs_supported_enctypes
kdc_options = ('forwardable,'
use_fast=False,
expect_claims=True,
etypes=None,
+ expected_ticket_etype=None,
+ expected_supported_etypes=None,
expect_pac=True,
expect_pac_attrs=None,
expect_pac_attrs_pac_request=None,
else:
additional_tickets = None
decryption_key = self.TicketDecryptionKey_from_creds(
- target_creds)
+ target_creds, etype=expected_ticket_etype)
subkey = self.RandomKey(tgt.session_key.etype)
pac_options=pac_options,
authenticator_subkey=subkey,
kdc_options=kdc_options,
+ expected_supported_etypes=expected_supported_etypes,
expect_edata=expect_edata,
expect_pac=expect_pac,
expect_pac_attrs=expect_pac_attrs,