Specifying the binding parameters for a Kerberos authentication service

Specify the binding parameters so that a Kerberos authentication service can authenticate new requestors by accessing your repository.

  1. Open the service from the navigation panel in Dev Studio by clicking Records > SysAdmin > Authentication Service and choosing a service from the instance list, and then navigate to the Kerberos tab.
  2. In the Authentication activity field, press the Down Arrow key and select the pyAuthenticationKerberosCredentials activity. If you are not using SPNEGO Source Forge, modify this activity code to retrieve GSSCredentials from the pxRequestor clipboard page.
    The activity must have Code-Security as the Applies To key part.
  3. In the Initial context factory field, enter the Java class name of the JNDI initial context factory to use to connect to the directory server, for example, com.sun.jndi.ldap.LdapCtxFactory.
  4. If you are using LDAP, in the Directory field, enter the LDAP server information. Otherwise, leave this field blank.
  5. In the Trust store field, press the Down Arrow key and select the truststore record that contains the server certificates.
  6. Click Save.
What to do next:  Identifying the operator for Kerberos authentication services