JEP Draft: Client-side GSS-API Library for Windows SSPI

Sean Mullan sean.mullan at
Tue Apr 17 16:36:58 UTC 2018

See for a more readable form of the 


On 4/17/18 12:30 PM, Weijun Wang wrote:
> Hi All
> Please take a look at
> With the Windows 10 Credential Guard feature turned on, Java can no longer uses the TGT in MSLSA, even if the allowtgtsessionkey registry value is set to 1. This JEP intends to provide a solution by letting Java directly make SSPI calls inside Windows.
> The JEP only covers client side using the default credential, but it might do more in future releases.
> Thanks
> Max

More information about the security-dev mailing list