Implement Kerberos Authentication / Configuring Kerberos Environment |
Final configuration steps that tie it all together.
Figure 1. Kerberos Authentication Flow: UA to Web Server to GAS to DVM to DB
At this point, most of the configuration is complete. There is nothing really new to add here, except the notion of Kerberos Delegation. Kerberos Delegation is when a service uses the user Kerberos ticket to ask for a Kerberos Authentication on another service in the name of the user. It's a kind of multi-hop Kerberos Authentication that permits the forwarding of the user credential from service to service.