Automating Keytab Rotation for Identity Bridging on VMware Unified Access Gateway

This post was originally published on this site

When using web reverse proxy and identity bridging edge services on VMware Unified Access Gateway, end-users present their identity through certificate or SAML assertion to access internal web applications. Unified Access Gateway converts the certificate or SAML assertion to a Kerberos ticket on behalf of the user and uses that to authenticate against the internal webserver; this process is called Kerberos Constrained Delegation (KCD).  Because Unified Access Gateway is not domain joined, you must add Active Directory […]

The post Automating Keytab Rotation for Identity Bridging on VMware Unified Access Gateway appeared first on VMware End-User Computing Blog.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.