Setting the central system to use Kerberos authentication

System A is the model system and central system for the other target systems. To set Kerberos authentication on the central system, complete these steps:

1. In iSeries™ Navigator, right-click Management Central (System A) and select Properties.

2. On the Security tab, select Use Kerberos authentication and set the authentication level to Add to trusted group.

3. Select Do not use in the Identity Mapping field and click OK. This setting allows you to enable or disable the use of Enterprise Identity Mapping (EIM) by Management Central servers to enable a single sign-on environment for your endpoint systems. If you want to enable single sign-on for your endpoint systems, see Scenario: Configuring the Management Central server for a single sign-on environment for a scenario that shows this configuration.

   The note at the bottom of the Security page indicates that the settings will take effect the next time the Management Central servers are started. Do not restart the servers now. This scenario indicates the appropriate time to restart the servers in a subsequent step.

4. A dialog box is displayed that indicates that the changes to these settings affect only this central system and that Kerberos must be properly configured before these settings can be used by the Management Central server jobs. Click OK. You have enabled Kerberos authentication to be used by the central system.

Parent topic: