Kerberos working on server, Client says Cannot resolve network address KDC
I have a new Leopard server setup and after a few errors with DNS, I have Kerberos showing as Running in Open Directory, General tab. sudo ipchange -checkhostname shows OK. I can resolve name and fully qualified name from both the workstation and the server. My REALM is the same as my fqdn server name but all CAPS.
If I open Directory on the workstation and try to add a new shared contact, I am prompted with "Directory requires that you type your Kerberos password". So I enter my name, my Realm in all CAPS, and my password. I have tried also entering the Realm in lowercase.
I get "Kerberos Login Failed: Cannot resolve network address for KDC in requested realm"
I don't see any DNS entries about KDC or SRV records in the DNS server, but I am not familiar enough with how Kerberos finds the KDC.
Any help is greatly appreciated. I've been searching these forums and googling for hours. I have also followed these documents:
http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c4od21.html
http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c4od20.html
If I open Directory on the workstation and try to add a new shared contact, I am prompted with "Directory requires that you type your Kerberos password". So I enter my name, my Realm in all CAPS, and my password. I have tried also entering the Realm in lowercase.
I get "Kerberos Login Failed: Cannot resolve network address for KDC in requested realm"
I don't see any DNS entries about KDC or SRV records in the DNS server, but I am not familiar enough with how Kerberos finds the KDC.
Any help is greatly appreciated. I've been searching these forums and googling for hours. I have also followed these documents:
http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c4od21.html
http://docs.info.apple.com/article.html?path=ServerAdmin/10.5/en/c4od20.html