!!! Overview
[{$pagename}] is a [Security Support Provider] as used in the [Microsoft Active Directory] [Security Support Provider Interface]


[{$pagename}] acts as an application layer between the [Security Support Provider Interface] and the other [Security Support Provider].

[{$pagename}] selects between [Kerberos] and [NTLM]. By __default, [{$pagename}] selects the [Kerberos SSP]__ unless [Kerberos] cannot be used by one of the systems involved in the authentication, or the calling application did not provide sufficient information to use the [Kerberos SSP].

When an [application] calls in to the [Security Support Provider Interface] to log on to a network, the application either can specify an [Security Support Provider] ([SSP]) to process the request. If the [application] specifies [{$pagename}] then the request is analyzed the best [Security Support Provider] to handle the request based on customer-configured security [policy].

[{$pagename}] implements [RFC 2478], [Simple and Protected GSSAPI Negotiation Mechanism] ([SPNEGO]) and therefore is also a (at least pseudo) [SASL Mechanisms]


!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [HTTP-Based Cross-Platform Authentication by Using the Negotiate Protocol|https://msdn.microsoft.com/en-us/library/ms995329.aspx?f=255&MSPPError=-2147217396|target='_blank'] - based on information obtained 2016-03-11- 
* [#2] - [Microsoft Negotiate|https://docs.microsoft.com/en-us/windows/win32/secauthn/microsoft-negotiate|target='_blank'] - based on information obtained 2020-01-21