[30222] in Kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

spnego

daemon@ATHENA.MIT.EDU (yuval)
Sun Aug 17 03:35:48 2008

From: "yuval" <yabadi@checkpoint.com>
To: <kerberos@mit.edu>
Date: Sun, 17 Aug 2008 10:35:48 +0300
Message-ID: <003301c9003b$de6792d0$7b2e1dc2@ad.checkpoint.com>
MIME-Version: 1.0
In-Reply-To: <a64bf030807290318k620503fcha2afc7911132e33d@mail.gmail.com>
Reply-To: yabadi@checkpoint.com
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu

Hi All

I have web server that required authentication.
It does so by returning 401 www-authenticate: negotiate.
IE (FF too) sends Kerberos ticket to authenticate.

When client (or client machine) is not from domain, IE popup for credential
and create NTLMSSP blob.

Is any way to continue the negotiation with the IE before it pops up the
NTLM credential to user? May be by sending spengo option?

Best Regards

Yuval 
Abadi

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[30222] in Kerberos

spnego

daemon@ATHENA.MIT.EDU (yuval)Sun Aug 17 03:35:48 2008

daemon@ATHENA.MIT.EDU (yuval)
Sun Aug 17 03:35:48 2008