25.7 User Source Settings

You can use the User Source Settings panel to perform the following tasks on the ZENworks Server.

25.7.1 Kerberos Authentication

The User Source Settings panel lets you browse for and select a keytab file used for Kerberos authentication. All Kerberos server machines need a keytab file to authenticate to the Key Distribution Center (KDC). The keytab file is an encrypted, local, on-disk copy of the host's key.

Before you can import the keytab file, you must set up a Kerberos service principal account and generate a keytab file for that account. For more information, see Kerberos (Active Directory only).

To import the keytab file, click Browse icon to browse for the file, then click OK.

After importing the keytab file, you can enable Kerberos authentication while adding a user source.To do so, click the Configuration tab, then click New in the User Sources panel to launch the Create New User Source Wizard. You can also enable Kerberos authentication on an existing user source. To do so, click the Configuration tab, click the user source, then click Edit next to Authentication Mechanisms in the General section.

25.7.2 Active Directory Settings

The Active Directory Settings panel lets you configure the range to search for Active Directory group memberships within a user container.

Consider a user container named BLR that has the A, B, and C top-level groups and the following nested groups:

  • Group A has nested group A1, A1 has nested group A2, and A2 has nested group A3.

  • Group B has nested group B1, B1 has nested group B2, and B2 has nested group B3.

  • Group C has nested group C1, C1 has nested group C2.

Select one of the following options:

  • Top-level groups only: Limits the search only within the top-level groups of the user container. For example, select this option if you want the search to be performed only in A, B, and C top-level groups; and not in the nested groups (A1, A2, A3, B1, B2, B3,C1, C2).

  • Top-level groups and all the nested groups: Searches within all the top-level groups and all the nested groups of the user container. For example, select this option if you want the search to be performed in the top-level groups (A, B, and C) and in all the nested groups (A1, A2, A3, B1, B2, B3,C1, C2).

  • Top-level groups and the nested group depth level upto: Lets you specify the nested grouplevel to perform the search. For example:

    • For nested group depth level specified as1, the search is performed in all the top-level groups (A, B, and C) and in the A1, B1, and C1 nested groups.

    • For nested group depth level specified as 2, the search is performed in all the top-level groups (A, B, and C) and in the A1, A2, B1, B2, C1, and C2 nested groups.

    • For nested group depth level specified as 3, the search is performed in all the top-level groups (A, B, and C) and in the A1, A2, A3, B1, B2, B3, C1, and C2 nested groups.