C++ Kerberos authentication using active directory

I’ve tried make up my mind, but still no joy. Consider a server-client scenario where:

  • server is written in .NET and handles Windows authentication (integrated with Active Directory) using built in technology. It serves a REST web API
  • client is written in C++, it’s an HTTP client which needs to authenticate with the server using the current logged on Windows user

it’s not clear how the C++ client authenticate and communicates with the server: I’ve read about Kerberos, SSPI, etc. but is it something we need to manually implement, do we need external libraries or is it a built in functionalities (sort of impersonate)?