We have configured Kerberos on NAM 4. We have also a custom
login/password form configured.
We have configured some Service Providers (SAML2 SP-initiated) on the
IDP. We want to use Kerberos authentication for one Service Provider
only and keep the login/password form auth for the other SPs.
I defined the Kerberos as a default contract and specified
login/password on the other SPs.
When I try to access of one application that is supposed to use
login/password, the Kerberos method is used.

The second point is that when the Kerberos authentication fails, a basic
authentication method is done.
Is there a configuration to avoid the basic authentication mechanism? We
want to fallback to the custom login/password form without being
prompted for basic auth?

Thanks in advance.

moularbi's Profile: https://forums.netiq.com/member.php?userid=1196
View this thread: https://forums.netiq.com/showthread.php?t=53412