Support for SPNEGO authentication is as specified in [RFC4559]. The tokens are transmitted using base64-encoding. This document will call out the differences in the Microsoft implementation from what is specified in [RFC4559], where applicable.
Sections 1.8, 2, and 3 of this specification are normative and can contain the terms MAY, SHOULD, MUST, MUST NOT, and SHOULD NOT as defined in RFC 2119. Sections 1.5 and 1.9 are also normative but cannot contain those terms. All other sections and examples in this specification are informative.