Hi Team,

Access Manager 3.1.

Recently Kerberos authentication was configured to test the seamless
login that we needed for some of our sites. Its currently on configured
for one workstation for testing purpose and its working just great on
that workstation.
Now, the issue is that, when other user who access those sites, they are
not able to login, they either have to enter username and password
multiple times to get through or when accessing that, the following
error is thrown: "Error processing spnego/kerberos: received ntlm toclet
which currenlty is not supported."
As per the documents I have done the configuration to test and it seems
to be working when applying resolutions given here in these:
1. http://tinyurl.com/pej7lhd
2. http://technet.microsoft.com/en-us/l.../cc779070.aspx
3. https://forums.netiq.com/archive/index.php/t-2945.html

But, workarounds given in these cannot be passed to all the users due to
security reasons, as most of them would be accessing our sites from
outside network.

I guess, access manager is not going to the fallback method for the
user. As I see in the log files, it keep going for kerberos and not to
secure password/usename form when Kerberos is not available.
What could be causing this issue?
Is there some configuration that I might have missed?
Is there anything else that I can provide?

Any pointers appreciated.

Note: I know that we are on lower and non supported version of access
manager and our business is planning to upgrade to latest supported
version in this Q1 2014.

ddgaikwad's Profile: https://forums.netiq.com/member.php?userid=5917
View this thread: https://forums.netiq.com/showthread.php?t=49644