diff --git a/kdc/pkinit.c b/kdc/pkinit.c
index 3e2564501..1c31887aa 100644
--- a/kdc/pkinit.c
+++ b/kdc/pkinit.c
@@ -266,7 +266,6 @@ get_dh_param(krb5_context context,
     DomainParameters dhparam;
     DH *dh = NULL;
     krb5_error_code ret;
-    int dhret;
 
     memset(&dhparam, 0, sizeof(dhparam));
 
@@ -344,14 +343,6 @@ get_dh_param(krb5_context context,
 	    goto out;
     }
 
-
-    if (DH_check_pubkey(dh, client_params->dh_public_key, &dhret) != 1 ||
-	dhret != 0) {
-	krb5_set_error_string(context, "PKINIT DH data not ok");
-	ret = KRB5_KDC_ERR_DH_KEY_PARAMETERS_NOT_ACCEPTED;
-	goto out;
-    }
-
     client_params->dh = dh;
     dh = NULL;
     ret = 0;