Set Up a Kerberos Authentication Profile

Define Kerberos authentication settings for Explicit Proxy mobile users to connect to Prisma Access.
Kerberos is a computer network authentication protocol that uses tickets to allow nodes that communicate over a non-secure network to provide their identity to one another in a secure manner.
The authentication profile specifies the server profile that the portal or gateways use when they authenticate users. Follow these steps to set up Kerberos authentication profile for Explicit Proxy mobile users to connect to Prisma Access.
  1. Go to
    Manage
    Configuration
    Identity Services
    Authentication
    Authentication Profiles
    and
    Add Profile
    .
  2. Select the
    Authentication Method
    :
    Kerberos
    .
  3. Enter the
    Profile Name
    to identify the server profile. The authentication profile specifies the server profile that the portal or gateways use when they authenticate users.
  4. Enter the
    Kerberos Realm
    (up to 127 characters) to specify the hostname portion of the user login name. For example, the user account name user@EXAMPLE.LOCAL has the realm EXAMPLE.LOCAL.
  5. Import
    a
    Kerberos Keytab
    file which contains the Kerberos account information. When prompted, browse for the keytab file, and then click
    Save
    . During authentication, the endpoint first attempts to establish SSO using the keytab.
  6. Choose the
    Kerberos Keytab
    .
  7. Click
    Save
    .

Recommended For You