Mexico Data Loss Prevention User Group

Hello,

I nedd integrate the DLP 15 console with the AD, from the configurations in the route:

System> Settings> General

The Active Directory Authentication option is not available.

The file krg5.ini does it without problems but I need to complement it so that the change in the console is reflected.

Someone knows how to do it?.

Thank you very much.

Lothar...

This changed in v15... Not in the UI at all any more. 

They replaced struts with spring and the process is entirely different. 

You copy the proper template from

SymantecDLP\Protect\tomcat\webapps\ProtectManager\security\springSecurityContext-KERBEROS.xml

Copy it To
SymantecDLP\Protect\tomcat\webapps\ProtectManager\WEB-INF\springSecurityContext-KERBEROS.xml

After moving it you rename it to just springSecurityContext.xml and replace the existing one. 

You will need to update the krb5.ini location in the file to point to the right drectory..

restart Vontu Notifier..which  will restart Vontu Manager as well.

Good Luck

Ronak

PLEASE MARKED SOLVED

Thank you very much Ronak!!
 

What he did before was:
1.- The configuration of the krb5.ini file with the domain data from the SymantecDLP \ Protect \ config path

2.- To test the connection to the Active Directory server with tool kinit SymantecDLP \ jre \ bin

3.- Carry out the previous procedure that you mention.

My doubt is that only doing the configuration of the file krb5.ini and what you mention is done the authentication of the AD with the DLP console or I need to do what I mentioned in step 1 and 2.

Regards.