we have Mountain Lion machines joined to the AD domain, kinit and klist showed the kerberos ticket, but we can not have SSO for accessing the Sharepoint 2007 sites. It always prompted for a domain user name and password, and try to save that in the local keychain store.
The Sharepoint is configured to use NTLM authentication. We tried both Safari and Firefox, same results. A windows domain computer won't have any SSO issue.
My understanding is that Firefox and Safari by default will try to negociate with Sharepoint, and first use Kerberos, and then fall back to NTLM for authentication.
We don't want to change Sharepoint to Kerberos, is there any other way to make the SSO working? Or force browsers to send NTLM authentication? What can the Centrify do?
Centrify has a Privilege Management solution for UNIX and Linux where we can grant specific users on specific computers elevated privileges to perform specific functions such as being a web or database admin.
We'd like to know if anyone has the need to grant specific rights to their end users, maybe on the machine that you've assigned to them or on a group of machines and if so, what rights you need to grant to the users.
Got an idea or suggestion on the product, we want to hear and also have the community vote to help us understand the use across the board. Check back from time to time to see new ideas and status updates