Hi,
I use mit-kerberos version 1.10.3 .
My http client app gets a spnego token after negotiating with microsoft AD
and IIS and using gss_init_sec_context. I am trying to login using the same
token again by saving it. is it the right way to do? I get a
KRB5KRB_AP_ERR_REPEAT
error in this case. if it
No, you shouldn't cache it or will be seen to be a replay attack.There is
no reason it needs to contact the KDC again to generate another token after the
first request where it gets a service ticket. Generally IIS only needs 1
Spnego token per connection, while mod_auth_kerb in apache want
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The MIT Kerberos Team is happy to announce the availability of the
kfw-4.0.1 release. The KfW 4.0 series of releases is based on the MIT
krb5 1.10 series of releases, greatly modernizing the support relative
to the KfW 3.2 series, which was based on t
