OAM11.1.2.3 WNA - Getting NTLM token instead of kerberoes token from KDC server

  Getting NTLM token instead of kerberoes token from KDC server . Browser asking for re-authentication .

KRB Debug Logs :

>>>Pre-Authentication Data:

  PA-DATA type = 19

  PA-ETYPE-INFO2 etype = 23

  PA-ETYPE-INFO2 salt = null

  PA-ETYPE-INFO2 s2kparams = null

AcquireTGT: PREAUTH FAILED/REQUIRED, re-send AS-REQ

>>>KrbAsReq salt is xxxx.xxxxxxxxx.COMHTTPerpdev5v2.xxxx.xxxxxxxxx.com

default etypes for default_tkt_enctypes: 23 1 3.

Pre-Authenticaton: find key for etype = 23

AS-REQ: Add PA_ENC_TIMESTAMP now

>>> EType: sun.security.krb5.internal.crypto.ArcFourHmacEType

>>> KrbAsReq calling createMessage

>>> KrbAsReq in createMessage

>>> KrbKdcReq send: kdc=172.16.2.119 TCP:88, timeout=30000, number of retries =3, #bytes=271

>>> KDCCommunication: kdc=172.16.2.119 TCP:88, #bytes=271

>>>DEBUG: TCPClient reading 1606 bytes

>>> KrbKdcReq send: #bytes read=1606

>>> KrbKdcReq send: #bytes read=1606