Enabling Kerberos for Microsoft Edge, Google Chrome and Spotfire Analyst

To be able to use Kerberos authentication, the Spotfire Server you are connecting to must be located in the Local intranet security zone and Enable Integrated Windows Authentication must be selected.

About this task

Follow these steps on every computer using Edge, Chrome or Spotfire Analyst to set the members of the Intranet zone for each computer. You can also use Group policy to set the members of the Local intranet security zone.

Procedure

In Windows, go to Internet Options, click on the Advanced tab and make sure that Enable Integrated Windows Authentication is selected.
On the Security tab, add the Spotfire Servers to which you want to connect to the intranet zone by entering the FQDN of each Spotfire server in Local intranet > Sites > Advanced.

Note: If the Spotfire Server FQDN is located in the Internet security zone, an attempt to use Kerberos authentication will not even be tried.

Important: If a client accesses a server belonging to another trusted domain, that server must also be added to the Local intranet zone.
For example, if the client client.emea.example.com accesses the server server.na.example.com, then server.na.example.com must be added to the Local intranet zone.