Once you create the Information Lifecycle STS, it is configured to leverage Windows Authentication in IIS. If Kerberos Authentication is not enabled, many modern browsers may have an issue successfully authenticating users using NTLM, even though both providers exist in IIS configuration. To ensure successful authentication, you should disable Kerberos authentication by performing the following steps:

  1. Open IIS

  2. Select Records Management STS

  3. Click Authentication Feature

  4. Select Windows Authentication

  5. Click the Providers… option in the pane on the right

  6. Select the Negotiate option and click Remove

  7. Click OK to close the Providers window