[X] I have verified this is the correct repository for opening this issue.
[X] I have verified no other issues exist related to my request.
Is Your Feature Request Related To A Problem? Please describe.
In business environments where security is important, it makes sense to authenticate to the Central Management web interface with Active Directory accounts, which you can monitor and control centrally. For another layer of security, one might add these users to the "Protected Users" group, which disallows NTLM as authentication method. Therefore, this security feature cannot be used by the current LDAP auth in CCM, which uses NTLM.
Describe The Solution. Why is it needed?
For added security when managing a large amount of clients through Chocolatey Central Management, Kerberos authentication to the web interface would be a good security improvement (the LDAP auth uses NTLM which Microsoft added to its deprecated features).
Checklist
Is Your Feature Request Related To A Problem? Please describe.
In business environments where security is important, it makes sense to authenticate to the Central Management web interface with Active Directory accounts, which you can monitor and control centrally. For another layer of security, one might add these users to the "Protected Users" group, which disallows NTLM as authentication method. Therefore, this security feature cannot be used by the current LDAP auth in CCM, which uses NTLM.
Describe The Solution. Why is it needed?
For added security when managing a large amount of clients through Chocolatey Central Management, Kerberos authentication to the web interface would be a good security improvement (the LDAP auth uses NTLM which Microsoft added to its deprecated features).
Additional Context
No response
Related Issues
No response
┆Issue is synchronized with this Gitlab issue by Unito