Could this help you from Troubleshooting :
Reason: Kerberos requires that the time on KDC and on the client be freely synchronized. (The default is no more than 5 minutes.) If this is not the case, you will get this error.
Solution: Synchronize the clock (or make it a system administrator).
Or
Cause. . This can happen if valid Kerberos credentials are not received. In particular, this happens if you want the main mechanism to receive credentials, but you forgot to specify this by setting the value of the javax.security.auth.useSubjectCredsOnly system property to false (for example, through -Djavax.security.auth.useSubjectCredsOnly = false in your run command).
Solution: Be sure to set the javax.security.auth.useSubjectCredsOnly system value to false if you want the underlying mechanism to receive credentials, and not your application or shell program (for example, the used Login utility in some tutorials) that execute JAAS authentication