I'm trying to use Heimdal PKINIT to authenticate to a Windows 2003
server. I can perform password-based pkinit for the CA, the
administrator, and a user account.However, when I export the certificate
and private key for any of these accounts from Windows and use them in a
Heimdal PKINIT operation, I get back the following error:
"kinit: krb5_get_init_creds: Client not trusted"
I suspect that this is a Windows error (and if it is, then any
suggestions to overcome it would be appreciated), but maybe it's a
certificate path error on the client side.