I have a client-server application that needs to be secured by adding server-side authentication. The client user will already be authenticated to LDAP (Active Directory) and will be running a C# GUI. The client connects to a server on a Linux box which uses Centrify for LDAP authentication. As I understand things, the two need to negotiate an SSPI session. Things look fairly simple on the client side (since it's a Windows box), but I'm having trouble finding information on how to attack the Linux side. Any tips?
I would prefer a Ruby or C++ solution, but anything is better than nothing.
Thanks.
(Since the client user is already authenticated on the client machine, he should not have to enter a password in the C# GUI.)
Perhaps I need to use GSSAPI on the Linux side? ...