Hi,
On my proxy SG, I have already configured NTLM authentication with BCAAA. I need now to upgrade to Kerberos.
I saw here how to implemnet kerberos :
https://support.symantec.com/en_US/article.TECH250945.embed.html
But my question is : do I have to do all steps even if NTLM is already configured ?
Example :
- Create a DNS “A” record
- Create a domain user account for the BCAAA
- In the Local Security Policy of the server on which BCAAA is running, modify
- the user rights assignment for the BCAAA domain
- Enter the following case-sensitive command:
- setspn -A HTTP/<FQDN_of_Proxy> <AD_Account_Name>
Or is there some steps already done with NTLM configuration and no need to do it again ?