[Perlgssapi-users] SSO on Windows

[<sam...@ba...>]

Hi,

Is it possible for LWP::Authen::Negotiate / GSSAPI to use the Windows credentials cache transparently?

We have a Perl application making HTTP requests to an intranet web server (IIS). We need the app to authenticate with the server, but we don't want to

-          (store and) send the password

-          run kinit interactively.

The reason is that the application runs non-interactively (as a Windows service), so any need to enter a password even once would defeat the purpose.

I've installed MIT KfW, and got the GSSAPI unit tests pass, but I think there's more to it than that (setting up krb5.ini, perhaps running kinit.exe) and I'm not even sure this all will achieve what I need...

Please advise.

Thanks,
Sam

_______________________________________________

This e-mail may contain information that is confidential, privileged or otherwise protected from 
disclosure. If you are not an intended recipient of this e-mail, do not duplicate or redistribute 
it by any means. Please delete it and any attachments and notify the sender that you have received 
it in error. Unless specifically indicated, this e-mail is not an offer to buy or sell or a 
solicitation to buy or sell any securities, investment products or other financial product or 
service, an official confirmation of any transaction, or an official statement of Barclays. Any 
views or opinions presented are solely those of the author and do not necessarily represent those 
of Barclays. This e-mail is subject to terms available at the following link: www.barclays.com/emaildisclaimer. 
By messaging with Barclays you consent to the foregoing.  Barclays offers premier investment banking 
products and services to its clients through Barclays Bank PLC, a company registered in England 
(number 1026167) with its registered office at 1 Churchill Place, London, E14 5HP.  This email may 
relate to or be sent from other members of the Barclays Group.

_______________________________________________