Hello,
I'm trying to get the negiotiateauth feature in the Mozilla 1.7 Beta
browser (on Red Hat 9) to authenticate to an IIS server. The Red Hat
server is using Kerberos-Workstation-1.3.3 (the latest) to
authenticate to the Windows domain.
However, when I try to access a secured page on the IIS server from
the Mozilla browser, the browser performs the following actions:
1. Mozilla attempts a TGS-REQ to obtain a service ticket for the HTTP
service. According to Ethereal, the details of the request are as
follows:
Server Name (Service and Host): HTTP server2003.jmulvey.local
Name-type: Service and Host (3)
Name: HTTP
Name: server2003.jmulvey.local
2. Mozilla attempts a TGS-REQ to obtain a service ticket for the
krbtgt service
Server Name (Service and Host): HTTP server2003.jmulvey.local
Name-type: Unknown (0)
Name: krbtgt
Name: JMULVEY.LOCAL
3. Mozilla then makes a port 80 GET request to the webserver, with a
Negotiate string. The request is rebuffed by the IIS server as
Unauthorized.
4. Mozilla repeats the process at step #2 above.
This yields an endless loop.
Any idea what is going on here?? Is this a bug? Any workarounds?
Thanks,
- Jim
_______________________________________________
Mozilla-security mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-security
