If the server doesn't include a responseToken within negTokenResp, assume there won't be signing or sealing happening on the connection. Don't switch into MS_KRB5 mode. Closes #4275
