Obtaining the Kerberos Ticket
On the OAM host machine, run this command from
JDK_HOME/bin
:kinit.exe -k -t <Full_Path_To_KEYTAB_File> <Service_Principal_Name>
After running the command, the system should display "
Authenticated to Kerberos v5
".Run the "
klist -e
" command to check the ticket:Ticket cache: FILE:/tmp/krb5cc_501 Default principal: HTTP/yourdomain.com@JDELDAP.COM Valid starting Expires Service principal 07/10/13 14:30:22 07/10/13 14:40:22 krbtgt/JDELDAP.COM@JDELDAP.COM Etype (skey, tkt): ArcFour with HMAC/md5, AES-256 CTS mode with 96-bit SHA-1 HMAC Kerberos 4 ticket cache: /tmp/tkt501 klist: You have no tickets cached
This concludes the initial integration steps for Active Directory and Kerberos. If "klist" and "kinit" commands are not successful, resolve the issue before continuing.