Previous Topic: Verify the Prerequisites

Next Topic: Support for the Integrated Windows Authentication

Administration GuideConfigure SPS to Support Integrated Windows AuthenticationConfigure SPS to Support Integrated Windows AuthenticationWindows Authentication SchemesConfigure Windows AuthenticationConfigure a Windows Authentication Scheme

Configure a Windows Authentication Scheme

You can use a Windows authentication scheme to authenticate users in a Windows environment.

Note: The following procedure assumes that you are creating an object. You can also copy the properties of an existing object to create an object. For more information, see Duplicate Policy Server Objects.

Follow these steps:

  1. Click Infrastructure, Authentication.
  2. Click Authentication Schemes.

    The Authentication Schemes page appears.

  3. Click Create Authentication Scheme.

    Verify that the Create a new object of type Authentication Scheme is selected.

  4. Click OK

    The Create Authentication Scheme page appears.

    Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

  5. Enter a name and protection level.
  6. Select Windows Authentication Template from the Authentication Scheme Type list.

    Scheme-specific settings appear.

  7. Enter Server Name, Target, and User DN information. If your environment requires NT Challenge/Response authentication, obtain the following values from the agent owner:
    Server Name

    The fully qualified domain name of SPS, for example:

    server1.myorg.com

    Target

    /siteminderagent/ntlm/smntlm.ntc

    Note: The directory must correspond to the virtual directory already configured by the installation. The target file, smntlm.ntc, does not need to exist and can be any name that ends in .ntc or the custom MIME type that you use in place of the default.

    Library

    smauthntlm

  8. Click Submit.

    The authentication scheme is saved and can be assigned to a realm.