Hi Georg, On Mon, Jan 12, 2009 at 04:43:33PM +0100, Georg Troska wrote:

OK. I do kdestroy on my client before I do anything. Then I try to add an account in iCal and do klist:

--- Kerberos 5 ticket cache: 'API:Initial default ccache' Default principal: troska@E4.PHYSIK.UNI-DORTMUND.DE

Valid Starting Expires Service Principal 01/12/09 16:11:09 01/13/09 02:11:09 krbtgt/E4.PHYSIK.UNI-DORTMUND.DE@E4.PHYSIK.UNI-DORTMUND.DE renew until 01/19/09 16:11:09 --- So authentication is not even tried. From what you write below this looks iCal specific. Probably someone else on the list using iCal can help? Does it need OpenDirectory?

I have got a ticket for my user troska now but none for HTTP/server07.

This "network.negotiate-auth.trusted-uris-thing" was the bad thing for firefox. Now access though firefox works. Well I can see a cryptic XML- file ;-) Good.

As you said you had good experience with Leightning I tried this as well:

In deed I could add a new calendarwithout problems. When I try to add an event, bad error occur in the error-log: [..snip..] self.username, self.realm, password, nonce, cnonce), 2009-01-12 16:40:07+0100 [-] [caldav-8008] File "/usr/lib/ python2.5/site-packages/twisted/web2/auth/digest.py", line 62, in calcHA1 2009-01-12 16:40:07+0100 [-] [caldav-8008] m.update(pszPassword) 2009-01-12 16:40:07+0100 [-] [caldav-8008] exceptions.TypeError: update() argument 1 must be string or read-only buffer, not None

Try disabling digest authentication in caldavd.plist. Does this help? -- Guido