Support Kerberos authentication "final leg" as per RFC4559 This for the passwordless Kerberos token authentication to comply with the RFC. See merge request !4