CM
Hi all,
i am trying to configure SSO for Aris 9.8
As per the documents "ARIS 9.8 Server Installation and Administration Guide" it says:
- create a technical user [DONE]
- create KeyTab file using the commend: ktab -a <TECHUSER_USER_PRINCIPAL_NAME> -n 0 -append -k umc.keytab [DONE]
- Configuration options in Administration: [DONE]
Procedure
1. Open the Administration.
2. Select Configuration.
3. Switch to User management settings.
4. Select Kerberos/SPNEGO.
5. To activate SSO, find the string
com.aris.umc.kerberos.active
Set this configuration key to true.
6. Select
com.aris.umc.kerberos.config
and upload the Kerberos configuration by clicking into the field.
8. In the Administration, upload the generated Kerberos key tab file by clicking into the field
com.aris.umc.kerberos.keyTab
9. In the Administration, find the following string and configure the username of the technical user.
com.aris.umc.kerberos.servicePrincipalName
If the service principal name in the keytab is e.g. mypc01@MY.DOMAIN.COM then the values of the properties com.aris.umc.kerberos.servicePrincipalName must contain the service principal name specified in the keytab.
10. In the Administration, find the following string and configure the realm for the Kerberos service. Enter the fully qualified name of the domain in uppercase.
com.aris.umc.kerberos.realm
The values of the properties com.aris.umc.kerberos.realm must contain the fully qualified domain name
- e.g. MYDOMAIN.COM.
11. In the Administration, find the following string and configure the fully qualified name of the KDC to be used:
com.aris.umc.kerberos.kdc
12 Configured the client [DONE]
After that configuration, if i open "Aris Connect" and i try to Start "ARIS Architect/Designer", in the Connection Wizard if i select "Use single sign-on" i get an error.
Moreover, is it correct that the "User Management Console" always ask for User/Password to login?
Could you please help me solving this problem?
Thanks & Regards,
Ciro.
P.s.: attached some screen shots
