...
To use KDC in Identity Server, you need to use the embedded LDAP which ships with WSO2 Identity Server. Thus, by default, the KDC server is disabled. To enable the KDC server, go to the Identity Server home directory and navigate to the /wso2is-3.2.3<PRODUCT_HOME>/repository/conf folder folder. There you will find a file named /wso2is-3.2.3/repository/conf/embedded-ldap.xml. Open embedded-ldap.xml and find the <KDCServer/> XML tag. You will configure the XML element named enabled. Set its value to true. After modifying it, the XML configuration should look like this:
| Code Block |
|---|
<KDCServer>
<Property name="name">defaultKDC</Property>
<Property name="enabled">true</Property>
<Property name="protocol">UDP</Property>
<Property name="host">localhost</Property>
<Property name="port">${Ports.EmbeddedLDAP.KDCServerPort}</Property>
<Property name="maximumTicketLifeTime">8640000</Property>
<Property name="maximumRenewableLifeTime">604800000</Property>
<Property name="preAuthenticationTimeStampEnabled">true</Property>
</KDCServer>
|
...
Users can use this screen to perform operations on service principals. Visit the pages below to learn more information on their associated topics:
| Child pages (Children Display) |
|---|
| Excerpt | ||
|---|---|---|
| ||
General information about the Kerberos Security. |