Fixed to handle credentials from non-default realm.
The problem arises when adding Kerberos TGTs to the Subject. We currently check for an explicit match looking for TGTs from the same realm, before adding the TGT to the Subject. Since this TGT was from a non-default realm, it did not get added to the Subject.
Fixed to handle TGTs from non-default realm.