Provisioning the Kerberos server

Last Updated : Mar 01, 2017 |

About this task

To use Kerberos authentication, configure System Manager with the required information for the Kerberos server.

Before you begin

  • If you use Firefox to gain access to System Manager, do the following:

    1. In the web browser, type about:config.

    2. Select the network.negotiate-auth.trusted-uris attribute.

    3. Right-click, select Modify, and add the URL of System Manager.

  • Log on to System Manager with admin privileged credentials.

Procedure

  1. On the System Manager web console, click Users > Administrators.
  2. In the navigation pane, click User Services > External Authentication.
  3. On the External Identity Repositories page, click Configure in the Authentication Servers section.
  4. On the Authentication Servers page, select the Provision Kerberos Server option.
  5. In the Provision Kerberos Server section, enter the following information:

    • DC Host Name (FQDN): Type your FQDN in the format machineName.domainName.com. For example, xyz.somecompany.com.

    • DC Computer Domain: Type the domain name of the Kerberos server.

    • Keytab File: Click Browse and select the Kerberos server key file.

  6. Click Save.
    Important:

    When you log on to the Kerberos server using Single Sign-on (SSO), the system automatically authenticates you in the Domain Controller (DC) domain. Therefore, you cannot exit from UCM by using the Logout link. Close the web browser to exit the application.

Related information
Authentication Servers field descriptions