2.1 Transport

SPNEGO messages are carried in the HTTP authentication exchanges as auth-data (as specified in [RFC4559] sections 4.1 and 4.2) and auth-data2. This document extends RFC 4559 such that the initial challenge contains GSS-API data.