Kerberos token capabilities for authentication and authorization

This topic describes the integration node web services capability for authentication, authorization, or both using a Kerberos token.

Kerberos is not applicable to authorization. Kerberos token encryption for providing message Authentication on outgoing SOAP messages from the integration node is supported in the following configurations:

Capability

Authenticate using a Kerberos keytab file.

Policy Enforcement Point (PEP) and direction

In (provider)
- SOAPInput node
In (consumer)
- SOAPRequest node
- SOAPAsyncResponse node
Configured with a policy set and binding defining the message Integrity

Trust Store or Policy Decision Point (PDP)

Kerberos keytab file.