Active Directory authentication fails for users with non-ASCII characters in their user names

book

Article ID: 160966

calendar_today

Updated On:

Products

Data Loss Prevention Enforce

Issue/Introduction

Because Kerberos does not support non-ASCII characters, Active Directory authentication fails for users with non-ASCII characters in their user names.

Resolution

To work around this issue, perform the following procedure:

  1. On the Enforce Server host, open the SymantecDLP\Protect\config\Protect.properties file in any text editor.
  2. Add the following property: sun.security.krb5.msinterop.kstring=true
  3. Save and close the Protect.properties file.
  4. Restart the Vontu Manager service to apply your configuration changes.