Page Comparison

...

All you need to do is to select "Add to existing keytab" when uploading keytab files.

...

https://docs.kantega.no/download/attachments/76252144/Skjermbilde 2018-08-30 13.02.55.png?version=1&modificationDate=1565875626984&api=v2

...

Merge keytab files using external tools

...

Code Block
ktpass /out c:\issues-KERBAUTH.keytab /mapuser KERBAUTH\svc-jira-sso /princ HTTP/issues.example.com@KERBAUTH.COM /pass * /ptype KRB5_NT_PRINCIPAL

...

Step 2: Adding a principal to the keytab

After transferring the keytab file from a domain controller in the first domain, the ktpass command is run with the keytab file from the other domain as an -in parameter in the second domain. The result is a new keytab file with both keys.

...

We use ktutil to read both keys (read_kt)
We output the keyts to a single file (write_kt)
The output is one merged file: merged_keytab_file.keytab

...

After uploading the latest generated keytab file, SSO should work on issues.example.com for users in both domains.

...

KERBAUTH.COM

...

EXAMPLE.LOCAL

...

The user betty Blue from the domain KERBAUTH.COM is able to SSO into issues.example.com

...

Versions Compared

Old Version 2

New Version 3

Key