Re: [PATCH 0/3] MR8020: libs/ldap: Make GSS-SPNEGO SASL plugin work with LDAP server that uses Kerberos authentication.

We shouldn't trade Kerberos for NTLM. Kerberos is only available if the client is part of the server REALM. If that's not the case then a fallback to NTLM should happen. It still works like that on Windows.