Establishing a Kerberos session with Microsoft Active directory in order to run ldap searches. We’re using suns Kerberos JAAS and GSS-API to create a Kerberos session. Current production code runs fine on J2SE 1.4.2_08 with RedHat Linux. While upgrading our code to run in J2SE 1.5_06 a problem exists on Linux but not windows XP. The Linux version we are using is RedHat AS 4.0 with the most current RPM patches.

The exception customer gets is
javax.naming.AuthenticationException: [LDAP: error code 49 - 80090308: LdapErr: DSID-0C090419, comment: AcceptSecurityContext error, data 0, vece_]

      at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2985)

      at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2931)

      at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2732)

      at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2646)

      at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:283)

      at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)

      at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)

      at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)

      at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)

      at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)

      at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:247)

      at javax.naming.InitialContext.init(InitialContext.java:223)

      at javax.naming.InitialContext.<init>(InitialContext.java:197)

      at javax.naming.directory.InitialDirContext.<init>(InitialDirContext.java:82)

      at com.vzw.consysv.ldap.search.USWinSearchAction.run(USWinSearchAction.java:85)

      at com.vzw.consysv.ldap.search.USWinSearchAction.run(USWinSearchAction.java:27)

      at java.security.AccessController.doPrivileged(Native Method)

      at javax.security.auth.Subject.doAs(Subject.java:337)