On Mon, 2016-03-14 at 09:22 +0100, Milan Crha wrote:
I agree with Ángel, trim anything related to authentication. Just in case. Even your server addresses and realm names might be good to trim. I see from your log that the server supports Basic, NTLM and Kerberos authentications (the Negotiate is named Kerberos in the UI). If you renew your ticker after login, then you can use the Kerberos type and avoid password storing for the server. I do not think it's related to your issue, I'm only mentioning it here as a side note.
Note that Negotiate includes Kerberos *and* NTLMSSP, amongst other things in theory. You can use Negotiate even when you don't have a Kerberos ticket at all, on a machine which is properly configured as part of the AD domain. Calling it 'Kerberos' in the UI is a bug. -- dwmw2
Attachment:
smime.p7s
Description: S/MIME cryptographic signature