Problem Description: When you run win_ping from Ansible tower against Windows server and use domain credentials you get “Kerberos auth failure for principal” error.
There could be multiple reasons behind the issue, please see the solution section for all possible cause and solutions.
- Make sure you have installed Kerberos on the Ansible machine and krb5.conf file is configured. Please note it is krb5.conf and not krb.conf. The file is /etc/krb5.conf
Please make sure the domain name you enter in config file is capitalized.
2. Please make sure you are using FQDN of the target machine of windows server and not IP address of
3. In the credentials section, the domain account that you are using should be in the format of account@DOMIAN.COM
As we have entered domain name in CAPITAL letters in krb5.conf file, in the credentials section the domain name must be entered in CAPITAL letters.