https://community.cisco.com/t5/network-security/cisco-nac-ad-sso-ktpass-exe-error-dscracknames-returned-0x2-in/m-p/1440176#M738335 <HTML><HEAD></HEAD><BODY><P>Causes<BR /> <BR /> ktpass needs more info<BR /> <BR /> You need to specify the user more fully, by prefacing the user name<BR /> with the domain name (<STRONG>NACII\</STRONG>) where DOMAIN name is the NetBIOS version of the AD domain.:</P><P></P><P><SPAN>C:\Program Files\Support Tools&gt;ktpass -princ </SPAN><A class="jive-link-email-small" href="mailto:ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM">ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM</A><SPAN> -mapuser </SPAN><STRONG>NACII\</STRONG>ccasso -pass cisco123 -out c:\test.ke<BR />ytab -ptype KRB5_NT_PRINCIPAL +DesOnly<BR />Targeting domain controller: sst-vu27keb2zd2.NACII.com<BR />Using legacy password setting method<BR />Successfully mapped ccasso/sst-vu27keb2zd2.NACII.com to ccasso.<BR />Key created.<BR />Output keytab to c:\test.keytab:<BR />Account ccasso has been set for DES-only encryption.</P></BODY></HTML> Thu, 19 Aug 2010 20:03:25 GMT edwardwaithaka 2010-08-19T20:03:25Z https://community.cisco.com/t5/network-security/cisco-nac-ad-sso-ktpass-exe-error-dscracknames-returned-0x2-in/m-p/1440175#M738324 <P>Hi,</P><P></P><P>I get the following error when I try to run KTPass.exe command;</P><P></P><P><SPAN>C:\Program Files\Support Tools&gt;ktpass -princ </SPAN><A class="jive-link-email-small" href="mailto:ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM" target="_blank">ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM</A><SPAN> -mapuser ccasso -pass cisco123</SPAN><BR />DsCrackNames returned 0x2 in the name entry for ccasso.<BR />ktpass:failed getting target domain for specified user.</P><P></P><P>C:\Program Files\Support Tools&gt;</P><P></P><P>Whats up?</P><P></P><P>I have created the ccasso user.</P> Fri, 21 Feb 2020 12:03:34 GMT https://community.cisco.com/t5/network-security/cisco-nac-ad-sso-ktpass-exe-error-dscracknames-returned-0x2-in/m-p/1440175#M738324 edwardwaithaka 2020-02-21T12:03:34Z https://community.cisco.com/t5/network-security/cisco-nac-ad-sso-ktpass-exe-error-dscracknames-returned-0x2-in/m-p/1440176#M738335 <HTML><HEAD></HEAD><BODY><P>Causes<BR /> <BR /> ktpass needs more info<BR /> <BR /> You need to specify the user more fully, by prefacing the user name<BR /> with the domain name (<STRONG>NACII\</STRONG>) where DOMAIN name is the NetBIOS version of the AD domain.:</P><P></P><P><SPAN>C:\Program Files\Support Tools&gt;ktpass -princ </SPAN><A class="jive-link-email-small" href="mailto:ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM">ccasso/sst-vu27keb2zd2.NACII.com@NACII.COM</A><SPAN> -mapuser </SPAN><STRONG>NACII\</STRONG>ccasso -pass cisco123 -out c:\test.ke<BR />ytab -ptype KRB5_NT_PRINCIPAL +DesOnly<BR />Targeting domain controller: sst-vu27keb2zd2.NACII.com<BR />Using legacy password setting method<BR />Successfully mapped ccasso/sst-vu27keb2zd2.NACII.com to ccasso.<BR />Key created.<BR />Output keytab to c:\test.keytab:<BR />Account ccasso has been set for DES-only encryption.</P></BODY></HTML> Thu, 19 Aug 2010 20:03:25 GMT https://community.cisco.com/t5/network-security/cisco-nac-ad-sso-ktpass-exe-error-dscracknames-returned-0x2-in/m-p/1440176#M738335 edwardwaithaka 2010-08-19T20:03:25Z