Kerberos Server for Single Sign-On
Integration of your Secure Remote Access Appliance with external security providers enables administrators to efficiently manage user access to BeyondTrust accounts by authenticating users against external directory stores. This guide is designed to help you configure the Secure Remote Access Appliance to communicate with a Kerberos security provider for the purpose of user authentication.
To define group policies based upon groups within a remote server, you must configure both the LDAP group provider and the Kerberos user provider. You then must enable group lookup from the user provider's configuration page. One group security provider can be used to authorize users from multiple servers, including LDAP, RADIUS, and Kerberos. For group policy setup and for other security provider configurations, see the additional guides provided at www.beyondtrust.com/docs.
Should you need any assistance, please contact BeyondTrust Technical Support at https://www.BeyondTrust.com/support.