I don’t know where the bug is yet, but it appears:
both work (tested on a Linux system)
does not work. Only the version of the principal without a backslash was defined.
Backslash interpretation seems to have inconsistent processing within the Kerberos kinit client/library.
On the flip-side, I was able to create a principal with a backslash and only be able to authenticate using that principal with the correct positioning of the backslash.
VP, Technology - Critical Infrastructure Engineering
30 Hudson St. 24th Floor 24EBF08 | Jersey City, NJ 07302
Goldman, Sachs & Co
firstname.lastname@example.org | (917) 343 4071
The Goldman Sachs Group, Inc. All rights reserved.
See http://www.gs.com/disclaimer/global_email for important risk disclosures, conflicts of interest and other terms and conditions relating to this e-mail and your reliance on information contained in it. This message may contain confidential or privileged information. If you are not the intended recipient, please advise us immediately and delete this message. See http://www.gs.com/disclaimer/email for further information on confidentiality and the risks of non-secure electronic communication. If you cannot access these links, please notify us by reply message and we will send the contents to you.