Document toolboxDocument toolbox

(12.2-en) Active Directory/Kerberos 1

This article shows how to configure the options for Active Directory with Kerberos in IGEL OS.


Menu path: Security > Active Directory/Kerberos





Enable

 The Kerberos basic configuration will be carried out.

 The Kerberos basic configuration will not be carried out. (Default)



Default domain (fully qualified domain name)

This value must match the Windows domain on which the logon is to take place. The value must be entered in upper case letters. e.g. EXAMPLE.COM.



DNS lookup for domain controller

In order to find the Key Distribution Centers (KDCs, domain controllers) and other servers for a realm, if they are not explicitly indicated, DNS SRV records are used. (Default)

The KDCs entered under Security > Active Directory/Kerberos > Domain 1 ... Domain 4 will be used.



DNS lookup for domain

In order to determine the Kerberos realm of a host, DNS TXT records are used. (Default)

The details under Setup > Security > Active Directory/Kerberos > Domain Realm Mapping are used.



Obtain Addressless Tickets

The first Kerberos ticket is addressless. This may be necessary if the client is located behind an Network Address Translation (NAT) device. (Default)