i) Create keytab file in SQL Server installed machine using the steps mentioned at the bottom of the page.
SQLJDBCDriver {
com.sun.security.auth.module.Krb5LoginModule required
useTicketCache=false
doNotPrompt=true
useKeyTab=true
keyTab="C://Users//kerberosuser.MSSQLKERBEROS//Desktop//kerberos//AppManager14//working//conf//KerberosConfigurations//MSSQL//krb5.keytab"
principal="MSSQLSvc/mssql-kerberos-dc1.mssqlkerberos.com:1433@MSSQLKERBEROS.COM"
storeKey=false
debug=false;
6. To use ticketCache for Kerberos authentication,
i) Run kinit program for the user account to which Kerberos is enabled using the steps mentioned at the bottom of the page. By default, ticket cache file will be created in the location {user.home}{file.separator}krb5cc_{user.name}
SQLJDBCDriver {
com.sun.security.auth.module.Krb5LoginModule required
useTicketCache=true
ticketCache="C://Users//kerberosuser.MSSQLKERBEROS//Desktop//kerberos//AppManager14//working//conf//KerberosConfigurations//MSSQL//krb5cc_kerberosuser"
doNotPrompt=true
useKeyTab=false
principal="kerberosuser@MSSQLKERBEROS.COM"
storeKey=false
debug=false;
SQLJDBCDriver {
com.sun.security.auth.module.Krb5LoginModule required
useTicketCache=false
doNotPrompt=false
useKeyTab=false
principal="MSSQLSvc/mssql-kerberos-dc1.mssqlkerberos.com:1433@MSSQLKERBEROS.COM"
storeKey=false
debug=true;
8. Open java.security file under <Applications Manager Home>\working\jre\lib\security directory and check for the line (line 141)
#login.config.url.1=file:${user.home}/.java.login.config
Add the below entry after this line,
login.config.url.1=file:C:/Users/kerberosuser.MSSQLKERBEROS/Desktop/kerberos/AppManager14/working/conf/KerberosConfigurations/MSSQL/MicrosoftJDBCDriver/login.conf
10. Now start Applications Manager and check Kerberos authentication using below query in the respective SQL server (auth_scheme should be returned as "KERBEROS") :
[ OR ]