[keycloak-user] Does Keycloak's SPNEGO support include fall-back to NTLM in absence of Kerberos?

Guy Davis guydavis.ca at gmail.com
Tue Jun 28 11:47:56 EDT 2016


Good day,

For sake of argument, assume that someone has set up a MS Active Directory
domain with Kerberos disabled, but NTLM still enabled.  In that situation,
would a user browsing to a Keycloak-protected application, with LDAP+SPNEGO
enabled (against that MS AD system) still allow for Integrated Windows
Authentication (auto-login without prompt) to web application?

Thanks much,
Guy

<re-sending today as same message yesterday didn't make it through to the
list>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20160628/3a4efeea/attachment.html 


More information about the keycloak-user mailing list