Hi all,

I would like to use kerberos as my standard authentication mechanism, but I also want to have the possibility to log in as an admin over the login form. 

Therefore, I want to skip the kerberos authenticator after a successful logout.

How would you solve this problem?

I've got two solutions, one sets a logout session cookie after a logout and then skips the kerberos authentication and another which allows users to skip any kind of alternative authenticators with a query parameter.

Logout Session Cookie

Query Param

Michael