Configuring the Authentication Service for domain authentication

Use the Application Server Administration console to configure settings for the 

Authentication Service so that the service can use the Kerberos configurations that you set up in previous procedures.

To configure Authentication Service for BMC Server Automation

1. On the reports server, navigate to the BDSSAInstallationDirectory/bin directory and start the Application Server Administration console (the blasadmin utility) by typing the following command: blasadmin.

2. To allow users to log on using domain authentication, enter the following command:

   set AuthServer isDomainAuthEnabled true

   By default, this value is set to false.

3. If you are not using the default file name of blappserv_krb5.conf, enter the following command to enable the Authentication Server to locate the blappserv_krb5.conf file:

   set AuthServer AuthSvcKrb5Config <fileName>

   <fileName> is the name of the blappserv_krb5.conf file. This file is essential for supporting Kerberos. By default, AuthSvcKrb5Config is set to a value of blappserv_krb5.conf. 

4. If you are not using the default file name of blappserv_login.conf, enter the following command to enable the Authentication Server to locate the blappserv_login.conf file:

   set AuthServer AuthSvcKrb5LoginConfig <fileName>

   <fileName> is the name of the blappserv_login.conf file. This file is essential for supporting Kerberos. By default AuthSvcKrb5LoginConfig is set to a value of blappserv_login.conf. 

5. Restart the Authentication Service.

Related topic

Configuring-the-Authentication-Server-to-refresh-domain-session-credentials