i want to use SSPI to implement Kerbros authentication, but it always downgrade to NTLM

Judy Jing Zhang 1 Reputation point

i use the Negotiate package to do SSPI authentication, and try to set the different target name. my domain name is "test", domain user is "judy", and i also register the spn "host\judy" for "judy" using setspn, so i try the target name as "judy", "test\judy", "administrator", "host\judy" "judy@test .com", but all the authentication would be downgrade to NTLM.
Do i miss something?

Windows API - Win32
Windows API - Win32
A core set of Windows application programming interfaces (APIs) for desktop and server applications. Previously known as Win32 API.
2,449 questions
A high-level, general-purpose programming language, created as an extension of the C programming language, that has object-oriented, generic, and functional features in addition to facilities for low-level memory manipulation.
3,563 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Xiaopo Yang - MSFT 11,581 Reputation points Microsoft Vendor

    Try such http/* format, for Kerbros authentication.