[keycloak-user] Does Keycloak's SPNEGO support include fall-back to NTLM in absence of Kerberos?

Guy Davis guydavis.ca at gmail.com
Mon Jun 27 15:19:03 EDT 2016


Good day,

For sake of argument, assume that someone has set up a MS Active Directory
domain with Kerberos disabled, but NTLM still enabled.  In that situation,
would a user browsing to a Keycloak-protected application, with LDAP+SPNEGO
enabled (against that MS AD system) still allow for Integrated Windows
Authentication (auto-login without prompt) to web application?

Thanks much,
Guy
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160627/93315e66/attachment.html 


More information about the keycloak-user mailing list