3.2.5.3.1 RequestSecurityTokenWithToken Request

When the server receives an RequestSecurityTokenWithToken request message, it must respond to it as if it were an [MS-MWBF] request for a security token with a wresult populated.

The server MUST consider the targetRealmName element as if it were the wtrealm parameter of the [MS-MWBF] request for a security token.

The server MUST consider the inToken element as if it were a Base64-encoded version of the wresult parameter of the [MS-MWBF] request for a security token.

The client MAY specify an [RFC2965] cookie value that is Base64-encoded per [RFC4648] in the cookie element of the request.<16>