Kerberos Server for Single Sign-On

Integration of your B Series Appliance with external security providers enables administrators to efficiently manage user access to BeyondTrust accounts by authenticating users against external directory stores.This guide is designed to help you configure the B Series Appliance to communicate with a Kerberos security provider for the purpose of user authentication.

To define group policies based upon groups within a remote server, you must configure both the LDAP group provider and the Kerberos user provider. You then must enable group lookup from the user provider's configuration page. One group security provider can be used to authorize users from multiple servers, including LDAP, RADIUS, and Kerberos. For group policy setup and for other security provider configurations, please see the additional guides provided at

Should you need any assistance, please log into the Customer Portal to chat with Support.