Use the Simple and Protected GSS-API Negotiation Mechanism (SPNEGO) and Kerberos authentication protocol to enable IBM® Lotus® Quickr™ and client Web browsers to prove their identities to one another in a secure manner. This configuration enables users to sign onto the Windows® desktop and then be automatically signed into Lotus Quickr features without having to authenticate.
The Kerberos authentication protocol is supported in environments in which Microsoft® Active Directory is used as the LDAP directory. See Creating a single signon for HTTP requests using the SPNEGO TAI
in the WebSphere® Application Server Network Deployment information center.
The Kerberos authentication protocol uses strong cryptography, which enables a client to prove its identity to a server across an insecure network connection. After the client and server have proven their identity, the authentication protocol encrypts the subsequent data sent back and forth.
To configure Lotus Quickr to use the Kerberos authentication protocol, complete the following procedures:
Parent topic: External security managers: qp85