I'm testing a Windows -> Apache Kerberos SSO product (see sig) with a customer and it's not working for them. The client is always asking for NTLM. It never even tries Kerberos. I know it's not browser settings because I wrote a simple wsh script and it too only tries NTLMSSP (whereas on my test network it works fine).
Can anyone think of a reason why XP clients would refuse to try Kerberos when accessing services (e.g. HTTP)? I've been through all the usual reasons but we just can't get it to work. Is there some kind of mode that a Windows domain controller can run in that causes all clients not to do Kerberos at all? Can anyone recommend a diagnostic? Thanks, Mike -- Michael B Allen PHP Extension for SSO w/ Windows Group Authorization http://www.ioplex.com/ ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
