×
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
 
 

Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

BMC Decision Support for Server Automation 8.6 ... Installing Configuring after installation Administering security Implementing authentication Domain authentication

Registering an Authentication Service in an Active Directory domain

This topic provides instructions for administering security at installations where AD/Kerberos authentication is not already being used for 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro.. If you have already set up AD/Kerberos authentication, you can use your existing Kerberos configuration files and modify as necessary based on the descriptions in this section.

This topic provides procedures that an administrator of an Active Directory Key Distribution Center (KDC) can use to register the Authentication Service associated with a 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. Application Server in an Active Directory domain.

Refer to this topic only if you want to employ AD/Kerberos user credentials for Domain Authentication of end users.

The following procedure is a master procedure. Each of the steps in this procedure references a subsection that describes another procedure.

  1. Review the required utilities that must be installed on the Active Directory server. For more information, see Requirements for the Active Directory server.
  2. Create an Active Directory user account for the Authentication Service. For more information, see Creating a user account in the domain of the Authentication Server.
  3. Associate a service principal name (SPN) with the user account. For more information, see Creating a service principal name.
  4. Export the user account and SPN information into a keytab file. After you create the keytab file, you must give this file and the SPN to the administrator of the Authentication Server for reports. For more information, see Exporting and copying the keytab file.
Was this page helpful? Yes No Submitting... Thank you
Last modified by Cathi Biagi on Nov 13, 2013
active_directory task registration authentication domain_authentication authentication_service kdc key_distribution_centers

Comments

Domain authentication
Requirements for the Active Directory server
© Copyright 2021 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2021 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.