Regressed Kerberos authentication doesn’t work with aliases

Published: | Categories: Privacy & Security


Firefox 35 cannot resolve CNAME records (short domain names or aliases) of servers on Kerberos authentication so enterprise users may fail to authenticate against intranet sites or proxy servers with the Kerberos protocol. This issue has been fixed with Firefox 35.0.1. Firefox 31 ESR is available for enterprise users to workaround the issue.