Kerberos for HTTP Server

Kerberos for HTTP Server

In the IBM HTTP Server for i5/OS, you can use Kerberos for network authentication.
Information for this topic supports the latest PTF levels for HTTP Server for iSeries . IBM recommends that you install the latest PTFs to upgrade to the latest level of the HTTP Server for i5/OS. Some of the topics documented here are not available prior to this update. See IBM Service for more information.
Kerberos is a network authentication protocol designed to provide authentication for client or server applications with secret-key cryptography. Kerberos is a ticket-based authentication system that provides an alternative to user and password or X.509 certificate authentication. With the HTTP Server (powered by Apache), you can use Kerberos on its own or in conjunction with Enterprise Identity Mapping (EIM) to authenticate Web users to the Web server.
For more information on EIM, see EIM concepts.

Kerberos requirements

Only supported on OS/400^® or i5/OS™ V5R2 or later.

Check your browser information to ensure it supports Kerberos. Not all browsers support Kerberos and some only support it in their more recent versions.

See the JKL Toy Company enables single signon for HTTP Server (powered by Apache) scenario for a complete step-by-step instructions on how to enable Kerberos for your iSeries™ server.

Parent topic:
Concepts of functions of HTTP Server