When using web reverse proxy and identity bridging edge services on VMware Unified Access Gateway, end-users present their identity through certificate or SAML assertion to access internal web applications. Unified Access Gateway converts the certificate or SAML assertion to a Kerberos ticket on behalf of the user and uses that to authenticate against the internal webserver; this process is called Kerberos Constrained Delegation (KCD). Because Unified Access Gateway is not domain joined, you must add Active Directory […]
The post Automating Keytab Rotation for Identity Bridging on VMware Unified Access Gateway appeared first on VMware End-User Computing Blog.