,Sometimes you may need to temporarily disable Kerberos authentication and use NTLM instead, for example when you are trying to troubleshoot authentication issues with a server or network device. Here’s a quick tip on how you can force your XP machine to use NTLM instead of Kerberos when authenticating with the server or device: use the IP address of the server or device instead of its Service Principal Name (SPN). For example, you could map a network drive to \\ and this will force NTLM instead of Kerberos to be used when authenticating the connection. For more information on SPNs, see http://technet2.microsoft.com/windowsserver/en/library/0cb0ec27-fa3e-423c-9669-3ccef815a29f1033.mspx?mfr=true.
Mitch Tulloch is lead author for the Windows Vista Resource Kit from Microsoft Press, which is THE book for IT pros who want to deploy, maintain and support Windows Vista in mid- and large-sized network environments. Mitch is also the author of Introducing Windows Server 2008, the first book from Microsoft Press about the exciting new server platform. For more information on these and other books written by Mitch, see www.mtit.com.