Configuring in VMware Identity manager Kerberos authentication for desktops with Integrated Windows Authentication (IWA) fails. No accounts are able to authenticate, and users receive an "Access Denied" error message.

VMware Identity manager 3.3.7

VMware Identity Manager (vIDM) does not support Kerberos/IWA with Windows Server 2025 Active Directory when the SMBv3 dialect is enabled, or when SMBv3 is the minimum supported dialect. Furthermore, VMware Identity manager cannot support Kerberos/IWA with Windows Server 2025 Active Directory environments that have hardened security policies in place.

Utilize this feature requires migrating to VMware Cloud Foundation (VCF) Identity Broker 9.x.  This configuration will be introduced in the future upcoming releases.