I would like to setup SSO using Kerberos (Active Directory). Yhis means acquiring kerberos ticket in a Powerbuilder 6.5 application. No possibility to upgrade PB version (yes, really...).
All the users of my program have ever logged in on the Windows Server (2003 or 2008) : RDP session.
Is it possible to get and check Kerberos Ticket with this PowerBuilder version ? How ?
I think it's possible to get the Windows current username thanks to the Windows API, but it isn't not as secure as a kerberos authentication.
I'll appreciate any help.
Related
I have a task:
My JavaEE app (uses JBoss) has to speak with Azure DevOps(ADO) via NTLM. So if I know user's credentials it's very easy to do, but I need to use Windows Server host credentials and problem is that app will not know exact username, password, domain etc. So I need use Windows Authentication to use credentials of user under which the application (Jboss server) is running but I can't find the solution. Found something like JBOSS should be configured to LDAP (Active Directory), but what next? Jboss will provide current user credentials to my app or what?
Wanted to know if host user can access ADFS server installed on vmware. I installed and configured AD FS on windows server 2012 r2 and now I want to test AD FS sso authentication. I tried to access it through IP but it shows that site can be reached. There are network connection between my local machine and vmware and I can access IIS default web page and can ping server IP. Is there a way to access AD FS web page from user local machine. ?
First off, can you access the metadata from your local PC?
https://hostname/federationmetadata/2007-06/federationmetadata.xml
If you can, you can setup a SAML or WS-Fed application that runs on your PC and can access ADFS.
Can someone please help me with the following
Assume I have an AD Domain and a 'standalone Linux host' which is not joined to the AD domain and there is no trust relationship in place between the AD and Linux of any kind.
Next I have a Kerberos aware application running on the Linux Server (WEB Server for example or other app) which is .
In order to an AD user to authenticate to the Linux hosted WEB/App using a KeyTab file
(created in Windows and setup on Linux). Does the Linux host need to be AD-Joined, in order to keyTab (single sign one) authentication to work?
Meaning if the Linux server was never joined to any domain of any kind (standalone), Would I still be able to user a KeyTab file to authenticate a user coming in from an AD Domain?
Thanks all
Charlie
My scenario:
I have a sample website hosted on IIS windows 2012 server. When I browse the website it should prompt for credentials of the the Active Directory. I have tried using 'Windows Authentication' it is working fine, It is using NTLM for Windows Authentication
How can I use Kerberos for login to the website instead of NTLM
I have tried the steps in thelink, but it is not working
https://blog.kloud.com.au/2015/06/04/kerberos-web-application-configuration/
Please help me.
Thanks
The below link has the detailed procedure for the above query
http://woshub.com/configuring-kerberos-authentication-on-iis-website/
So I moved a FileMaker database from a machine with FM server 10 to a new machine with FM server 11.
Everything seems to be working, but the problem is it no longer prompts users for a user name and password. It seems to just log them in automatically with their windows user name.
Does anyone know what could be causing this?
Sounds like you activated external authentication on the FileMaker Server. That means that FileMaker server will try to auth using using an Active Directory or even local windows accounts on the server machine.
Look in the FileMaker Server Admin Console is you enabled External Authentication, if so, deactivate it and restart the FileMaker Service.