Now that we are binding 10.7.3 devices to AD using the Directory Binding feature in Casper, our users are running into an issue when setting up Entourage.
When the users opens Entourage 2008 for the first time, the account setup wizard is attempting to use the identify of the Kerberos ticket instead of prompting for domain, user, and password. The only work around I have found is to delete any tickets within ticket viewer, then relaunch Entourage.
The computers are binding to AD correctly during the Casper Imaging process. Domain users can log into the Mac. Single Sign On is working when connecting to SMB department shares.
Between offering SSO versus an easy way for customers to setup Entourage, I would give up SSO until we get to Exchange Server 2010 and Outlook 2011.
Our Exchange admin are focused on getting to Exchange 2010 and aren't able to look into the identity issue with Exchange 2003 servers.
How do I disable kerberos? And is that the proper solution?
