JEP Draft: Client-side GSS-API Library for Windows SSPI

Sean Mullan sean.mullan at oracle.com
Tue Apr 17 16:36:58 UTC 2018


See http://openjdk.java.net/jeps/8199569 for a more readable form of the 
JEP.

--Sean

On 4/17/18 12:30 PM, Weijun Wang wrote:
> Hi All
> 
> Please take a look at https://bugs.openjdk.java.net/browse/JDK-8199569.
> 
> With the Windows 10 Credential Guard feature turned on, Java can no longer uses the TGT in MSLSA, even if the allowtgtsessionkey registry value is set to 1. This JEP intends to provide a solution by letting Java directly make SSPI calls inside Windows.
> 
> The JEP only covers client side using the default credential, but it might do more in future releases.
> 
> Thanks
> Max
> 


More information about the security-dev mailing list