Configuring integration with Active Directory

To configure integration with Active Directory:

1. Log in to the web interface with the application administrator account.
2. In the window of the application web interface, select the Settings section, Users subsection.
3. Go to the Active Directory integration tab.
4. Select the Integration check box if you want to enable integration with Active Directory.
5. Click Browse to upload the keytab file.

   A file containing pairs of unique names (principals) of clients that are allowed to use Kerberos authentication and encrypted keys derived from the user password. Systems that support Kerberos use keytab files to authenticate users without entering a password.

6. Select the keytab file and click Open.

   After you upload the file, the following fields are displayed:

   • Keytab file status. Possible values:
     • File contains SPN for this server means the uploaded keytab file contains the SPN for that Kaspersky Anti Targeted Attack Platform server.
     • No SPN for this server means the uploaded keytab file does not contain the SPN for that Kaspersky Anti Targeted Attack Platform server.
   • The file contains is the list of SPNs that the file contains.
7. Click Apply.

Integration with Active Directory is configured.

In distributed solution and multitenancy mode, Active Directory integration settings configured on the PCN server are not applied to SCN servers connected to that PCN server. If you want to set up Active Directory integration on individual SCN servers, you must complete the steps above on each of the selected SCN servers.

Page top