Kerberos.NET: Signed PAC: KRB_AP_ERR_MODIFIED

Hi, I got KRB_AP_ERR_MODIFIED Message stream modified after signing a new PAC with krbtgt key. Is that an expected behavior? What need to be in the PAC? It behaves normally if I don’t include a PAC in the ticket.

var pac = new PrivilegedAttributeCertificate(){ };
pac.Encode(krbtgtKey, krbtgtKey);

Thanks!

About this issue

  • Original URL
  • State: closed
  • Created 4 years ago
  • Comments: 25

Most upvoted comments

I could also just look at the AD source…

+1
SteveSyfuhs on May 11, 2020
Read more comments on GitHub
← iot: Release 1.1 does not support InputPullUp/InputPullDown mode for RaspberryPi2B
LLVMSharp: Nuget package 6.0.0-beta1 missing LLVM C API symbols on Linux →