Providing a session key to the IBM JRE to enable Kerberos/SPNEGO SSO in ELM
By default, Microsoft Windows restricts third-party applications from retrieving ticket-granting ticket (TGT) and session key pairs from the Kerberos security package. The IBM JRE that is included in ELM Eclipse clients is one such third-party application that is affected by this Windows restriction. ELM web clients are not affected. To remove this restriction, you must edit the Windows registry.
Procedure
Results
The allowtgtsessionkey
key is added to
the Windows registry and is set to allow the operating system to grant
the client a TGT and session key pair.