Hi Nick,
I did enable the sec trace like you said, the result is similar to the report SEC_TRACE_ANALYZER. I checked before and after the HTTP call, and there is a token for HTTP, as being specified in KDC:
I create SNC-keytab with sapgenpse (and also SPNEGO) again, but it does not help. PSE PIN AND cred_v2 seems to be ok:
I configured IE before, so it would not be the problem.
I tried to focus on the error messages about the decryption failed. In SM21, I can also see the error "SPNego Authentication failed since received token could not be decrypted". Because the password of SPNEGO is correct, I don't know how to continue from here, I tried to search for the error code but no result found. Do you have any other suggestions to troubleshoot the error?
Regards,
Duy