Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-8140

Propagation of the Kerberos identity from server to server

    XMLWordPrintable

Details

    • Enhancement
    • Resolution: Done
    • Major
    • EAP_EWP 5.2.0
    • EAP_EWP 5.1.2
    • Security
    • None
    • Release Notes
    • Hide
      An enhancement has been made to JBoss Negotiation when configured as an authentication source. If a client authenticates to the server using a forwardable Kerberos ticket then the client's credentials can be accessed on the server using the JBoss Negotiation API and used for further calls (delegation using GSSAPI, WS-Kerberos, credential propagation for EJB calls etc.).
      Show
      An enhancement has been made to JBoss Negotiation when configured as an authentication source. If a client authenticates to the server using a forwardable Kerberos ticket then the client's credentials can be accessed on the server using the JBoss Negotiation API and used for further calls (delegation using GSSAPI, WS-Kerberos, credential propagation for EJB calls etc.).
    • Documented as Feature Request
    • NEW

    Description

      Customers want to use JBoss Negotiation to authenticate users against an Active Directory domain and have the Kerberos identity propagated to other JBoss servers.

      The kerberos identity established by JBoss Negotiation should be stored in such a way that the identity can be propagated to remote servers.

      Attachments

        Activity

          People

            darran.lofthouse@redhat.com Darran Lofthouse
            rhn-support-dehort Derek Horton
            Russell Dickenson Russell Dickenson (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: