Because Kerberos does not support non-ASCII characters, Active Directory authentication fails for users with non-ASCII characters in their user names.

To work around this issue, perform the following procedure:

1. On the Enforce Server host, open the SymantecDLP\Protect\config\Protect.properties file in any text editor.
2. Add the following property: sun.security.krb5.msinterop.kstring=true
3. Save and close the Protect.properties file.
4. Restart the Vontu Manager service to apply your configuration changes.