Why does JBoss Negotiation (SPNEGO based authentication) fail when the KDC and LDAP servers are on different machines?

Solution Verified - Updated -

Issue

  • Why does JBoss Negotiation (SPNEGO based authentication) fail when the KDC and LDAP servers are on different machines?
  • SPNEGO based authentication works when the KDC and LDAP servers are on the same machine.  However, we would like to implement load balancing for the LDAP requests.  Unfortunately, when we enable load balancing of the LDAP requests, the SPNEGO based authentication fails.

Environment

  • JBoss Enterprise Application Platform (EAP)
    • 5.x
  • JBoss Negotiation
  • Active Directory

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In