Skip to Content
avatar image
Former Member

Post Go-Live Issues using Kerberos


We went live with 40,000 users using the Kerberos single signon technology about a month back.

Post Go-Live we have been receiving lot of issues from the user side

regarding logging problems. Some of them we could solve by checking the

IE security settings, but most of them still have the problems logging

into portal.

When investigated we found that users are trying to login to the system from other domains outside the firewall. Things are such that we cannot make any changes in firewall settings.

We wanted to know whether can we have a fallback using the NTLM technology or any other way out for these users.

The other limitation is we have Portal Unix based server (Sun Solaris) which will not support NTLM technology.

Also we are using the ADS for authentication while for getting portal roles we are using microsoft ADAM instance. The ADAM instance does not store user password, thereby the basic authentication fails there itself.

Any suggestions are welcome.

Thanks and Regards,


Add comment
10|10000 characters needed characters exceeded

  • Get RSS Feed

1 Answer

  • Oct 08, 2007 at 10:04 AM

    Hi Abhitab,

    One thought.... You may consider offering access through VPN and Citrix to people working remotely or outside the domain...



    Add comment
    10|10000 characters needed characters exceeded

    • Former Member

      Thanks Juan for the quick reply.

      Do we need to install the citric client on user desktop? Is it possible for you to guide me for any documentation on this solution.