i want to use SSPI to implement Kerbros authentication, but it always downgrade to NTLM

Judy Jing Zhang 1 Reputation point
2021-08-04T00:42:10.81+00:00

i use the Negotiate package to do SSPI authentication, and try to set the different target name. my domain name is "test", domain user is "judy", and i also register the spn "host\judy" for "judy" using setspn, so i try the target name as "judy", "test\judy", "administrator", "host\judy" "judy@test .com", but all the authentication would be downgrade to NTLM.
Do i miss something?

Windows API - Win32
Windows API - Win32
A core set of Windows application programming interfaces (APIs) for desktop and server applications. Previously known as Win32 API.
2,449 questions
C++
C++
A high-level, general-purpose programming language, created as an extension of the C programming language, that has object-oriented, generic, and functional features in addition to facilities for low-level memory manipulation.
3,563 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Xiaopo Yang - MSFT 11,581 Reputation points Microsoft Vendor
    2021-08-20T07:41:33.977+00:00

    Try such http/* format, for Kerbros authentication.