To enable Kerberos under WebLogic, you must set up a special
Engine Kerberos Service Authentication Provider.
About this task
To set up the special Engine Kerberos Service Authentication
Provider:
Procedure
- Copy the Engine-authenticator-wl.jar to
the following location:
Option |
Description |
Windows |
%WL_HOME%\server\lib\mbeantypes |
UNIX |
${WL_HOME}/server/lib/mbeantypes |
This JAR file can be found in the Content Platform Engine installation directory,
such as Program Files\FileNet\ContentEngine\Kerberos for
Windows or installdir/FileNet/ContentEngine/Kerberos for
non-Windows systems.
- Start the WebLogic server and run the administrative console.
- Navigate to , where myrealm is the default name
of the security realm, which might be different in your environment).
- Create a new Engine Kerberos Service Authenticator and
set its name to, for example, EngineKrbAuthenticator.
- In the pane that follows, change the Control Flag setting
to SUFFICIENT.
- Click Create.
- Go back to .
- Click EngineKrbAuthenticator and
use the arrows to shift it above any LDAP providers, but below the
DefaultAuthenticator.
- Click Apply.
- Navigate back to the EngineKrbAuthenticator page and click Details or Provider
Specific.
- Make any changes necessary on this page. For
instance, set the Debug option.
- Save the changes.