Is ineligible for postdating
When troubleshooting Kerberos issues related to the configuration steps in this document, the error messages that appear in logs on the authentication server and in network traces are usually more helpful than the messages the user receives at the user interface.
The text portion of error messages differ on Windows-based Active Directory servers and UNIX KDCs, but all are based on the same set of error codes defined in RFC 1510 which defines error codes in the number range of 1–61 (hex values 0x01 to 0x3D). Since the creation of RFC 1510, a small number of additional error codes have been proposed.
For your convenience, we have extracted the error codes below and added some of our comments.
Please note that in event log entries, a hexedicimal code is used (the number starts with 0x).
Often a generic message will be presented at the user interface.
These failure codes are the original error codes from the Kerberos RFC 1510 (see page 83 for the complete list).Kerberos Error Codes is a Result Code from Kerberos that implies something went wrong.Kerberos related Result Code messages can appear on the authentication server KDC, the application server, at the user interface, or in network traces of Kerberos packets.More specific messages can be found in the logs on the authentication server or application server.Kerberos errors that appear during a network trace are the GSS-API base error codes instead of the English translation of these codes.