Client does not present kerberos ticket to httpd for authentication if GssapiBasicAuth is set

Solution Verified - Updated -

Issue

  • We added GssapiBasicAuth to our httpd/mod_auth_gssapi configuration. Then clients (Firefox or curl with --negotiate) will no longer present their kerberos ticket to httpd for authentication and get a 401 response. But sending a basic auth Header with a username and password will work.

Environment

  • Red Hat Enterprise Linux (RHEL)
    • Apache httpd 2.4.x
      • mod_auth_gssapi

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content