(12.4-en) Active Directory/Kerberos Configuration in IGEL OS 12
- Harald Saller
This article shows how to configure the options for Active Directory with Kerberos in IGEL OS.
Menu path: Security > Active Directory/Kerberos
Enable
☑ The Kerberos basic configuration will be carried out.
☐ The Kerberos basic configuration will not be carried out. (Default)
Default domain (fully qualified domain name)
This value must match the Windows domain on which the logon is to take place. The value must be entered in upper case letters. e.g. EXAMPLE.COM.
DNS lookup for domain controller
☑ In order to find the Key Distribution Centers (KDCs, domain controllers) and other servers for a realm, if they are not explicitly indicated, DNS SRV records are used. (Default)
☐ The KDCs entered under Security > Active Directory/Kerberos > Domain 1 ... Domain 4 will be used.
DNS lookup for domain
☑ In order to determine the Kerberos realm of a host, DNS TXT records are used. (Default)
☐ The details under Setup > Security > Active Directory/Kerberos > Domain Realm Mapping are used.
Obtain Addressless Tickets
☑ The first Kerberos ticket is addressless. This may be necessary if the client is located behind an Network Address Translation (NAT) device. (Default)