Hi guys ive followed this and it works
https://wikispaces.psu.edu/pages/viewpage.action?pageId=111411809&navigatingVersions=true
Only problem is that i open a system preference pad lock authentication as the localadmin account i can see in the Ticket viewer app it makes the account localadmin the default identity and the end user can no longer get kerberos services.
Has anyone seen this before and overcome this problem?
This is my /etc/pam.d/authorization
# authorization: auth account
auth optional pam_krb5.so use_first_pass use_kcminit default_principal
auth sufficient pam_krb5.so use_first_pass default_principal
auth optional pam_ntlm.so use_first_pass
auth required pam_opendirectory.so use_first_pass nullok
account required pam_opendirectory.so
