Hey all, I'm trying to decrypt Kerberos blobs (like padata, etc..) appears in Microsoft Kerberos tickets iv'e captured with wireshark. I got keytab for the user account, and i tried to use it with various of cipher suites (rc4/aes256) with the correct client configuration as well. For some reason wireshark doesn't decrypt any of the blobs. My env is : AD Domain 2012 R2, Windows 10 Client. (x64 both) Can anyone shed some light on this ? Thx. asked 07 Apr '16, 12:20  speidy |
This is a static archive of our old Q&A Site.
Please post any new questions and answers at ask.wireshark.org.
