Hello Everyone,

Here is my current situation:

I can successfully bind a mac to the network using my AD credentials (because I have the priveledges) But, if a users has the "Donot require kerberos for reauthentication..." check mark on their account in AD they are not able to login. However, if you uncheck they login successfully and are able to create a mobile account etc. But, they receive a "Login error message" when they try to use Cisco VPN.

The problem is we need the check mark to be applied so the users can use Cisco VPN and authenticate.

Our goal is to have the AD users login to the bound macs and use Cisco VPN. Any information would be greatly appreciated.