Reputation: 367
Windows Kerberos Authentication for Google Chrome and Edge
I am using Kerberos authentication protocol for my websites.
I have added website under trusted sites and intranet sites and updated Group policy under Internet Options.
It works well in IE but does not work with Chrome and Edge. It keeps asking for credentials and yields to 401 error code.
I researched a lot and got to know that for Chrome, it works well with NTLM but for Chrome to work with Kerberos we need to do some settings using cmd.
ie. "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” --auth-server-whitelist="*.domain.com " --auth-negotiate-delegate-whitelist="*.domain.com"
After doing this my website keeps loading round.
Any help is appreciated.
Upvotes: 3
Views: 11035
Answers (1)
Reputation: 367
For anyone struggling with Google Chrome, it worked after adding below values to Registry.
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome]
"AuthNegotiateDelegateWhitelist"="*.yourwebsitedomain.com"
"AuthServerWhitelist"="*.yourwebsitedoman.com"
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome]
"AuthNegotiateDelegateWhitelist"="*.yourwebsitedomain.com"
"AuthServerWhitelist"="*.yourwebsitedoman.com"
This setting does not work in Chrome Incognito.
For Incognito to work with Kerberos protocol,we need to update the Flag value under chrome://flags
Enable Ambient Authentication in Incognito mode to Enabled.
Finding solutions for Edge. Any help is appreciated.
Upvotes: 6
Related Questions
- Integrated Windows Auth (NTLM) on a Mac using Google Chrome or Safari
- Kerberos delegation doesn't work in chrome
- Kerberos Authentication in IIS 7 Windows Server 2012
- Kerberos not working with Chrome
- Kerberos authorization doesn't work on Chrome and FireFox, but works on IE
- Authenticate with Kerberos in .NET Web API
- Windows Authentication in other applications (like Google-chrome)
- Asp.net and Kerberos Authentication
- ASP.NET not passing credentials to SQL Server when using chrome
- kerberos in asp.net