Hi Everyone,
We are in the process of exposing our on premise SharePoint sites via M365/AAP.
During some initial testing we discovered an issue with accessing the Mysite web app where it was being blocked via AAP for authentication.
I discovered that the Mysite web app was actually set to IWA > NTLM, whereas the other web apps are set to IWA > Negotiate (Kerberos).
Would there be any reason why the people that provisioned the farm chose to set it this way?
Is there any harm in changing it to Kerberos?
If it was modified, I am assuming that there would be an outage whilst the farm reconfigured itself and may also require some IIS restarts etc
Please advise.
Thanks