Administration Guide > Configuration > Settings in Variables > UC_KDC_SETTINGS - Single Sign-On

UC_KDC_SETTINGS - Single Sign-On

Variable for configuring the KDC  Single Sign-on mechanism.

Key

Value1

Restart necessary

Fully-qualified domain of the OS userIn the Automation Engine, a user is an instance of a User object, and generally the user is a specific person who works with Automic products. The User object is assigned a user ID and then a set of access rights to various parts of the Automation Engine system and product suite. These access rights come in the form of Automation Engine authorizations and privileges, Decision user roles and EventBase rights and ARA web application object rights. You can manage all these centrally in the ECC user management functions. See also, Unified user management.

Department of the Automation EngineThis component drives an Automation Engine system and consists of different types of server processes. system's user

No

KEYTAB Path and file name of the keytab file No

Description

Logging in via KDC (Key Distribution Center) Single Sign-on to the Automation Engine system requires a suitable configurationA set of constituent components that make up a system. This includes information on how the components are connected including the settings applied. via the variableIt stores or retrieves values dynamically at runtime. An individual Automation Engine object type. objectAutomation Engine controlled activities and processes are structured in the form of objects. See also: Task UC_KDC_SETTINGS.

The full instructions for Setting up Single Sign-On can be found in the Administrator Manual.

The variable is located in clientA closed environment within an Automation Engine system where you can create and run objects. A client name consists of a 4-digit number that must be indicated when a user logs on to the Automation Engine system. Users and their rights are also defined in clients. A particular Automation Engine object type. 0000 and must be modified there. Transfer to another client is not possible since the settings apply to the entire system.

The following 2 definitions must be implemented in this variable:

  1. Specify keytab file
    Authentication is performed in Single Sign-on mode using the Keytab file. This value is therefore mandatory.
    Define a variable item using the "KEYTAB" key. Enter the path and name of the Keytab file in the associated value column.
  2. Specify domain
    The operating system users, which are for authentication, are searched for via Automation Engine users. If the Automation Engine client contains one or more users with the same name but a different departmentDepartment name to which the Automation Engine user belongs., a corresponding assignment must be defined via the variable object. The fully-qualified domain name of the operating system user (Key columnColumn in static Variable objects that can be used to access values of a particular line.) must be assigned to the AE user's department (Value1 column).

 

 

Also see:

 


Automic Documentation - Tutorials - Automic Blog - Resources - Training & Services - Automic YouTube Channel - Download Center - Support

Copyright © 2016 Automic Software GmbH