Configuring Kerberos authentication
As a BMC Helix Single Sign-On administrator, you can configure Kerberous authentication to provide authentication service for a client and server applications by using secret-key cryptography.
To configure Kerberous authentication, perform the tasks described in this section:
| Task | Description | Reference |
|---|---|---|
| 1 | As an Active Directory (AD) administrator, create a service account in Active Directory and then add an SPN mapping for the service account. Optionally, as s a user who has access to the domain controller, generate a keytab file if you want to provide the credentials through a keytab file. | Configuring Active Directory as an identity provider for Kerberos authentication |
| 2 | As a BMC Helix SSO administrator, configure the Kerberos authentication in the BMC Helix SSO Admin Console. | Configuring a realm for Kerberos authentication |
| 3 | As a system administrator, configure a browser on the end users' computers, or provide instructions to end users how to configure their browser for Kerberous authentication. | Configuring browser settings for Kerberos authentication |
To configure Kerberous authentication, perform the tasks described in this section:
| Task | Description | Reference |
|---|---|---|
| 1 | As a BMC Helix SSO administrator, configure the Kerberos authentication in the BMC Helix SSO Admin Console. | Configuring a realm for Kerberos authentication |
| 2 | As a system administrator, configure a browser on the end users' computers, or provide instructions to end users how to configure their browser for Kerberous authentication. | Configuring browser settings for Kerberos authentication |
Comments
Log in or register to comment.