Hi everyone,
I am currently trying to make GroupWise SSO work with an Azure/Entra joined device.
So the device is not domain joined, it is only Entra joined. But has line of sight to the domain controllers so it actually receives the Kerberos TGT.
The problem is, the client does not receive the Kerberos ticket for the groupwise SPN (service principle name).
If I join the device to the onprem AD, everything works fine, the ticket for groupwise gets granted and I am able to login seamlessly.
Does anyone have an idea or experience what can be done here?
Regards,
Philipp
PS: The reason behind going the Entra way is I want to implement a way for our users to work in office and mobile / in home office as seamlessly as possible.