You can set up accounts for use by Content Services on a Windows domain controller running Active Directory.
These instructions also apply to simple non-clustered installations, where a single alfresco.war and share.war run on a single host.
These instructions use the following naming conventions for the example server, server1.alfresco.org:
- <host> is the server host name (without domain name suffix). For example, server1.
- <domain> is the DNS domain. For example, alfresco.org.
- <domainnetbios> is the Windows domain NetBIOS name. For example, alfresco.
- <REALM> is t he DNS domain in upper case. For example, ALFRESCO.ORG.
Follow these instructions to configure Kerberos with Microsoft Windows Active Directory:
-
Create accounts for the SSO authentication filters for the server that will run
either the repository tier web application (alfresco.war) or
the Share web application (share.war).
- Copy the key table files created in step 1 to the servers they were named after. Copy the files to a protected area, such as C:\etc\ or /etc.