Kerberos authentication
Kerberos is a protocol that allows for secure authentication even over unsecure networks. It can be difficult to set up, but after it is fully working you have a very secure authentication system with the benefits of single sign-on.
It is usually a good idea to first create a working setup where the server uses username and password/LDAP authentication and a user directory in LDAP mode, and then proceed with switching from username and password/LDAP to Kerberos.
Note: Delegated Kerberos is not supported when running Web Player or
Automation Services on Linux.
- Setting up Kerberos authentication on Spotfire Server
If you intend to use the Kerberos authentication method on your system, the first thing you must do is to set up Spotfire Server to use Kerberos. - Setting up Kerberos authentication on nodes
After setting up Kerberos authentication on Spotfire Server, you must set it up for the nodes in your environment. - Enable Kerberos authentication for end-users
If you use Kerberos authentication, it must be enabled in the browsers of all end-user computers. - Using Kerberos to log in to the Spotfire database
To increase security in your Spotfire implementation, you might want to set up Spotfire Server to authenticate with the Spotfire database on Oracle and Microsoft SQL Server using the Kerberos protocol.
Parent topic: Single sign-on authentication methods