You
can map the Kerberos client principal name to the WebSphere user registry
ID for both Simple and Protected GSS-API Negotiation (SPNEGO) web
authentication and Kerberos authentication.
Read the Mapping of
a client Kerberos principal name to the WebSphere® user registry ID article for
more information.
You can optionally map a Kerberos
principal to a System Authorization Facility (SAF) identity on z/OS®.