You can refer to the Microsoft Web site for detailed information on SSPI.

You can use

--passthroughauth

to establish a connection with a

system. After the connection has been established, authentication for the

system or any

system that it manages is no longer required. Using

--passthroughauth

passes the credentials of the user who runs the command to the target

system. No additional authentication is required if the user who runs the command is known by the computer from which you access the

system and by the computer running the

software.

If vCLI commands and the

software run on the same computer, the user needs only a local account to run the command. If the vCLI command and the

software run on different machines, the user who runs the command must have an account in a domain trusted by both machines.

SSPI supports several protocols. By default, it selects the Negotiate protocol, where client and server try to find a protocol that both support. You can use

--passthroughauthpackage

to explicitly specify a protocol that is supported by SSPI. Kerberos, the Windows standard for domain-level authentication, is used frequently. If the

system is configured to accept only a specific protocol, specifying the protocol with

--passthroughauthpackage

might be required for successful authentication. If you use

--passthroughauth

, you do not have to specify authentication information by using other options.