Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Testing that a website is using Kerberos authentication

Tags:

iis

kerberos

How do you go about checking that an IIS website is successfully using Kerberos and not falling back on NTLM?

like image 339
James Newton-King Avatar asked Oct 20 '25 16:10

James Newton-King

1 Answers

One way I found to test in code that you are using Kerberos is that that the HTTP_AUTHORIZATION header for NTLM always starts with the following:

Negotiate TlRMTVNTUA

If the header doesn't start with text then the browser is authenticating using Kerberos.

like image 163
James Newton-King Avatar answered Oct 24 '25 14:10

James Newton-King
Sign in to Comment

Related questions

How can I configure IIS subfeatures in Ansible
IISExpress crash upon debug start
Is IHostedService.StopAsync() called when IIS recycles?
.netcore 3.1 - Windows Hosting Bundle - Installs .Net Core Runtime 3.1.0 preview3 instead of 3.1.0 (final release version)
How to add a new SQL Server machine account
BeginRequest is called twice

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!