I see from your log that your client is defaulting to NTLM.
<Obtained token:
ntlms...@^c^@^...@^@^...@^x^@r...@^@^...@8^@8...@�^@^...@^@
After reading through my little wiki posts I did notice that I left one
somewhat important piece of information out. Your browser configuration
For IE : Go to tools-->Internet Options-->Advanced tab
Scroll down to the bottom of the list and be sure that the
following checkbox is selected:
Enable Integrated Windows Authentication
Restart IE and try again.
For Firefox: In the address field type, about:config
In the filter field type, network.n
set the value for network.negotiate-auth.trusted-uris.
If you deployed your Kerberos with the Credential
Delegation feature,
click on network.negotiate-auth.delegation-uris.
This preference lists the sites for which the browser may
delegate user authorization
to the server. Enter a comma-delimited list of trusted
domains or URLs.
--
View this message in context:
http://n4.nabble.com/CAS-SPNEGO-authentication-always-right-with-IE-tp1568991p1679262.html
Sent from the CAS Users mailing list archive at Nabble.com.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
