AlbertQ7 Member since 2018 1 post
Public Safety
Posted: 1 year ago
Last activity: 1 year 11 months ago

User Kerberos delegation for Connect-REST

Configuration details: (Pega7.3.1 on Tomcat7.0.59, JDK 1.7.0_161, Linux)

We need to make Connect-REST service which requires Kerberos authentication (not a service account Kerberos credential but the SSO user's credential). We know we can configure a service account Kerberos keytab, but the requirement is to the user specific Kerberos credential.

Is there anyway Tomcat can be configured to pick up the user Kerberos dynamically based on the SSO user? In the Connect-REST rule form, it seems there is no place to configure this information.

Please suggest.

***Edited by Moderator Marissa to update platform capability tags****

Low-Code App Development Data Integration Security
Moderation Team has archived post
Share this page LinkedIn