I am trying to do single sign on using kerberos like Firefox does with spnego. I am using the Java GSS API and run into the problem with the allowtgtsessionkey regsitry on Windows 2003 (Like described on http://java.sun.com/j2se/1.5.0/docs/guide/security/jgss/tutorials/Troubleshooting.html).
Our security does not like changing the registry key and allowing access to the session key. So I wonder how Firefox solved this problem. On our Systems Firefox works without changing the registry key. Could you explaing what steps are done in Firefox to acquire a service ticket? Best regards Christian -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
