OS X server 10.8 Mail server. Kerberos authentication not working.

http://support.apple.com/kb/HT4778

See this article. I was having the same problem and the line where the Kerberos server was supposed to have been entered by the Server.app was disabled and not filled in. I un-commented it and filled in my server name, restarted Mail service and now it is working perfectly.

I am on Mavericks Server and I am unable to get this working.

Can you guys be more specific because I tried doing what the article mentions and then rebooting but no change. I also tried putting the FQDN instead of the "ALL$" and that didn't work either. Am I supposed to be uncommenting anything else in there?

Everything else seems ok in terms of Kerberos, I am using the right Realm from klist, I can get a valid ticket with Ticket Viewer, I forced an authenticated bind on the client but I can't get Single Sign-On to work.

When using klist, do you get an entry where the principal starts with imap?

In Server.app, what authentication option(s) do you have selected for Mail?

Tim

p.s., I see I was wrong and you actually had commented on another thread. Please start a new thread for your situation.

I had to use authenticated binding of all machines to the OD. Then Kerberos worked. HTH.

No when using klist my principal is: username@FQDN and on the client Mail > Preferences I have the FQDN as incoming/outgoing.

In server App, I have all authentication methods checked including Kerberos.

I've started my own thread here: https://discussions.apple.com/thread/6204162

but I thought that because the solutions posted here seemed to have worked I would give it a try.

I am using authenticaded binding.