Hello,
I used SSO login to Active Directory services -> kinit + set network.negotiate-auth.trusted-uris at Firefox. This works in old version OpenSuSE.
But this doesn’t work since version Leap.
Can you help me?
Thanks.
Mila
I don’t know about the method you described,
Can you post a link to an article describing it?
The usual way in openSUSE is to add your machine to the Domain by using the YaST module…
Has been that way as long as I’ve ever used openSUSE.
TSU
Hello,
I have configured krb5.
I log in to AD ->
kinit user
klist ->
Ticket cache: FILE:/tmp/krb5cc_1010
Default principal: user@EXAMPLE.COM
Valid starting Expires Service principal
10/25/18 08:23:17 10/25/18 18:23:25 krbtgt/EXMPLE.COM@EXAMPLE.COM
renew until 10/26/18 08:23:17
I have configured Firefox:
network.negotiate-auth.trusted-uris - EXAMPLE.COM
URL to Firefox: http://example.com/portal/ -> automatic (SSO) login to AD web service
klist ->
Ticket cache: FILE:/tmp/krb5cc_1010
Default principal: [email]user@EXAMPLE.COM[/email]
Valid starting Expires Service principal
10/25/18 08:23:17 10/25/18 18:23:25 krbtgt/EXAMPLE.COM@EXAMPLE.COM
renew until 10/26/18 08:23:17
10/25/18 08:32:47 10/25/18 18:23:25 HTTP/portal.example.com@EXAMPLE.COM
renew until 10/26/18 08:23:17
This works in old version OpenSuSE. But this doesn’t work since version Leap.
M.
I suspect you’re not asking about SSO which is a very broadly applied terminology, my guess is that you’re actually asking about Windows Integrated Authentication.
Take a look at the following article which was updated only a couple months ago…
It suggests different settings in your Firefox…
https://specopssoft.com/blog/configuring-chrome-and-firefox-for-windows-integrated-authentication/
TSU