Hello Tawfiq, if i enable in RDP (under Traffico Control --> RDP --> Settings) "Enable Kerberos Authentication" with also "Require Domain Membership" and also "Enable NTLM Authentication", is there a conflict? Is there a priority for SPS to attemp one method rather then other? Which are the impatcs if the customer have windows server that accept only kerberos and other that are working with NTLM?
Can i keep enabled all these options together?
in the admin guide i see this:
NOTE: When enabling Kerberos authentication, note that
-
Kerberos authentication can only be used with the Require domain membership sub-option enabled.
-
The AA plugin is not supported with Kerberos authentication.
-
SPS has to forward the incoming service ticket to the required target server. Therefore, the referrer connection policy has to use inband target selection. For more information, see Kerberos.
-
The Act as Remote Desktop Gateway option cannot be selected for the referrer connection policy.
Which is the specific meaning of this --> The AA plugin is not supported with Kerberos authentication.
Can coexist both authentication method?
thank you very much for your help