Hello,
Does anyone on this list have S4U2Proxy or "Constrained Delegation"
experience?
I know that the security is based on a PAC, but it is unclear where it
is enforced -- in the benevolent service, or in the KDC.
And, if it is the KDC, which one if client and service realms differ?
The client
On 15/10/15 08:00, Rick van Rein wrote:
> Hello,
>
> Does anyone on this list have S4U2Proxy or "Constrained Delegation"
> experience?
Yes
> I know that the security is based on a PAC, but it is unclear where it
> is enforced -- in the benevolent service, or in the KDC.
Can be either, however ac
Please direct me to the resources that can answer the following:
* We have an open case with MS Premier Support and Kerberos for Windows
4.0.1 states "Integration with the Windows LSA credentials cache"
* We are using .NET webclient and can't seem to get the client to use the
tic
