OPNsense must be in same domain as AD (hostname configuration page) Confirmed, under settings, General, the hostname is set to HILT-OPNSENSE
# cat /etc/resolv.conf# dig -x 192.168.1.77# dig hilt-opnsense.bwt.local# cat /usr/local/etc/ssoproxyad/krb5.conf# kinit Administrateur@BWT.LOCAL# klist# /usr/local/sbin/msktutil -c -b CN=COMPUTERS -s HTTP -k /usr/local/etc/ssoproxyad/PROXY.keytab --computer-name HILT-OPNSENSE --upn HTTP/hilt-opnsense.bwt.local --server bwx-hilt-dc01.bwt.local --enctypes 28 --verbose