Is SPNEGO supposed to work out of the box on domain joined Windows client

Daniel Fuchs daniel.fuchs at oracle.com
Thu Dec 12 00:23:58 UTC 2019


Hi,

By default transparent authentication is disabled on windows.
You may have to specify a non-default value for the
jdk.http.ntlm.transparentAuth property [1], or configure
an Authenticator [2] that has the appropriate credentials.

[1] https://bugs.openjdk.java.net/browse/JDK-8225506
[2] 
https://docs.oracle.com/en/java/javase/13/docs/api/java.base/java/net/HttpURLConnection.html#setAuthenticator(java.net.Authenticator)

best regards,

-- daniel

On 10/12/19 21:11, Marcin Wiśnicki wrote:
> Forgive me for asking possibly silly question but I looked everywhere 
> and couldn't find a simple answer to this question:
> 
> If I use standard java.net <http://java.net> classes to establish 
> connection to HTTP server that uses SPNEGO authentication (AD) from a 
> Windows machine that's joined to AD, without further configuration, is 
> this supposed to work?



More information about the net-dev mailing list