kinit succeeded but ... Server not found in Kerberos database

[Marek Pe]

Hi,
I have a problem to join linux to the Windows Server 2008 AD. My samba
version is 3.2.5-4~bpo41+1, I'm working on the Debian Etch. I have
configured samba to join Windows Server 2003 Active Directory and
everything works fine, but I can't join it to the win2008.
kinit is ok,
but net ads join -U Administrator fails with a message:

[2010/01/11 09:05:10, 0] libads/sasl.c:ads_sasl_spnego_bind(819)
kinit succeeded but ads_sasl_spnego_krb5_bind failed: Server not
found in Kerberos database
Failed to join domain: failed to connect to AD: Server not found in
Kerberos database

Is it a samba problem or something is wrong on the windows server's
2008 side?
I've read in the documentation that Service Principal Name wasn't set
properly... tried to fix it but without success, any ideas?

[Marek Pe]

I've found more information using debug level = 5

[2010/01/12 11:46:24, 3] libads/sasl.c:ads_sasl_spnego_bind(789)
ads_sasl_spnego_bind: got server principal name =
not_defined_in_RFC4178@please_ignore
[2010/01/12 11:46:24, 3] libsmb/clikrb5.c:ads_krb5_mk_req(671)
ads_krb5_mk_req: krb5_cc_get_principal failed (No credentials cache
found)
[2010/01/12 11:46:24, 1] libsmb/clikrb5.c:ads_krb5_mk_req(680)
ads_krb5_mk_req: krb5_get_credentials failed for ldap/
xxx....@XXX.LOCAL (Server not found in Kerberos database)
[2010/01/12 11:46:24, 0] libads/sasl.c:ads_sasl_spnego_bind(819)

kinit succeeded but ads_sasl_spnego_krb5_bind failed: Server not
found in Kerberos database

I couldn't find anything useful for me in the RFC file, can anyone
tell me what is wrong in my SPN?

ldap/xxx....@XXX.LOCAL

xxx.local - fqdn
XXX.LOCAL - my realm