Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

Registering an Authentication Service in an Active Directory domain

This topic provides instructions for administering security at installations where AD/Kerberos authentication is not already being used for 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro.. If you have already set up AD/Kerberos authentication, you can use your existing Kerberos configuration files and modify as necessary based on the descriptions in this section.

This topic provides procedures that an administrator of an Active Directory Key Distribution Center (KDC) can use to register the Authentication Service associated with a 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. Application Server in an Active Directory domain.

Refer to this topic only if you want to employ AD/Kerberos user credentials for Domain Authentication of end users.

The following procedure is a master procedure. Each of the steps in this procedure references a subsection that describes another procedure.

  1. Review the required utilities that must be installed on the Active Directory server. For more information, see Requirements for the Active Directory server.
  2. Create an Active Directory user account for the Authentication Service. For more information, see Creating a user account in the domain of the Authentication Server.
  3. Associate a service principal name (SPN) with the user account. For more information, see Creating a service principal name.
  4. Export the user account and SPN information into a keytab file. After you create the keytab file, you must give this file and the SPN to the administrator of the Authentication Server for reports. For more information, see Exporting and copying the keytab file.
Was this page helpful? Yes No Submitting... Thank you

Comments