McAfee MAP-3300-SWG Product Guide - Page 246

Overview of System features Users, Groups and Services Test (Kerberos) This dialog box allows you to test that the connection to your Kerberos server is working. Table 246 Option definitions Option Definition Username Enter a Kerberos user name to authenticate as (include the realm and delimiter character, if required) Password Enter the password for the Kerberos user that you entered in the Username box. Test Click Test to authenticate against the Kerberos server. If the request is successful, a green check mark and Authentication test succeeded is displayed. You will also see the Access-Accept response sent back from the Kerberos server in the Output box and any attributes returned. If the request fails, a warning icon and the message Authentication test failed is displayed. The error message returned from the Kerberos server is displayed in the Output field. Configuring Kerberos authentication using Active Directory 2003 This topic explains how to configure the appliance to use Kerberos authentication in a Microsoft Active Directory 2003 environment. It explains how to configure the appliance to authenticate users when they access the Internet. Before you begin This topic involves several pages of the interface. We recommend that you print the topic before starting the task. Alternatively, find this same topic in the Product Guide. • All authenticated users are allowed to access the Internet. • The appliance is configured in proxy mode. • All authenticated users' workstations, the Windows 2003 Active Directory Server, and the appliance have the same clock source such as a Network Time Protocol server. The appliance can also perform Kerberos authentication in a transparent mode. Browsers are configured to use transparent authentication using Kerberos with the appliance in a Windows 2003 Active Directory environment. 246 McAfee Email and Web Security Appliances 5.6.0 Product Guide