Skip to main content
This forum is closed to new posts and responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:

HCL Software Customer Support Portal for U.S. Federal Government clients
HCL Software Customer Support Portal

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)

HCL Notes/Domino 8.5 Forum (includes Notes Traveler)
Previous Next
Subject: SPNego stop working
Feedback Type: Problem
Product Area: Domino Server
Technical Area: Accessibility
Platform: Windows
Release: 8.5.3
Reproducible: Always

We faced an issue with the SPNego authentication and Microsoft Internet Explorer (v6xx, v7xx,v8xx) after we rolled out the Microsoft Fixpack KB253672-v2 and related KB2572069, KB2586448.

Before this fixpacks were able to use a servers desktop and connect to a Lotus Domino Web-Application with authentication done via Cerberos and Lotus Domino integrateted SPNego. It works fine since it was first launched and with all the last Fixpacks by IBM and/or Microsoft.

We have now installed the new Microsoft Fixpack KB253672-v2 and related KB2572069, KB2586448 on the Windows Server and the authentication stop working properly. At the moment the browser start handshaking with the SPNego service the security popup rises with tell you that the host you try to connect to is unknown and a potential risk. The code execution is stopped and you have only two options:
1; leave the url
2; add url to the trusted url store within the Internet Explorer security store.
Option 2 should be obsolete because the whole internal domain has been configured to be be acknowledged as trusted Intranet hosts.

Deinstalling the new Microsoft Fixpack KB253672-v2 and related KB2572069, KB2586448 on the Windows Server makes the SPNego working as expected again.

I guess there is any security change (maybe just an Registry entry) that causes this behaviour.

Anybody else seen this issue and maybe have a solution?

Any hint is highly appreciated

Chreers
Klaus


Feedback number WEBB8NGCF3 created by ~Xagra Bubfana on 11/10/2011

Status: Open
Comments:





Printer-friendly

Search this forum

Member Tools


RSS Feeds

 RSS feedsRSS
All forum posts RSS
All main topics RSS