We disabled NTLM in our environment. As soon as we did that, we could no longer login to Rapid Recovery. We had to make an exception for Rapid Recovery. We really don't like granting exceptions like this, as it makes the overall environment less secure.
Can Rapid Recovery be made to use Kerberos to login? Or even better, is there a way to turn off pass-through authentication entirely and instead use an HTML form?