You are here

Airlock Back-side Kerberos SSO

Affects product: 
Airlock WAF
Airlock IAM
Affects version(s): 
7.3 or newer

Airlock Back-side Kerberos SSO provides an easy way to do Kerberos Identity Propagation. The benefit of this solution is, that single sign-on (SSO) can be provided without knowing users password for back-end authentication. This allows to do authentication enforcement on Airlock with client certificate or RSA SecureID token. It is an elegant way of propagating users identity to the web application which allows Kerberos authentication (typically possible with Microsoft Web Server).

The following document describes how to implement and configure Back-side Kerberos SSO and the involved systems, e.g. Airlock IAM.


All latest Microsoft integration guides can be found on

Knowledge Base Categories: