Use Keytab
| Key Name | Default Value | Required |
|---|---|---|
|
UseKeytab |
Clear ( |
No |
Description
This option specifies whether the connector obtains the ticket for Kerberos authentication by using a keytab.
- Enabled (
1): The connector uses a keytab to obtain a ticket before authenticating the connection using Kerberos. - Disabled (
0): The connector does not attempt to obtain the Kerberos ticket, and assumes that a valid ticket is already available in the credentials cache.
Note:
This option is applicable only when the authentication mechanism is set to Kerberos (AuthMech=Kerberos).
If you enable this option but do not set the Default Keytab File option (the DefaultKeytabFile key), then the MIT Kerberos library will search for a keytab file using the following search order:
- The file specified by the KRB5_KTNAME environment variable.
- The
default_keytab_namesetting in the[libdefaults]section of the Kerberos configuration file (krb5.conf/krb5.ini). - The default keytab file specified in the MIT Kerberos library. Typically, the default file is
C:\Windows\krb5ktfor Windows platforms.
- Authentication Driver Configuration Options on page 1
- Using Advanced Kerberos
- Configuring Authentication
- Using Advanced Kerberos
- Configuring Authentication
- Using a Connection String