skip to main content
Configuring Security for OpenAccess SDK : Configuring OpenAccess SDK security : Configuring authentication for administrative activities
 

Configuring authentication for administrative activities

To configure authentication for an OpenAccess SDK agent service, set the ServiceAdminAuthMethods service attribute to one or more of the following values:
*Anonymous authentication: ServiceAdminAuthMethods=anonymous.
*User ID and password authentication: ServiceAdminAuthMethods=OSLogon(UID,PWD).
*Kerberos authentication: ServiceAdminAuthMethods=kerberos. See Configuring Kerberos authentication for details.
*NTLM: ServiceAdminAuthMethods=integrated_nt.
Note: The service must run with the privileges required to perform the requested authentication. On Linux and UNIX, the service must run with root permissions to use OSLogon.
For OpenAccess SDK services on Windows, you can configure multiple authentication mechanisms for administrative activities. For example, if you configure ServiceAdminAuthMethods=integrated_nt and ServiceAdminAuthMethods=OSLogon(UID,PWD), the OpenAccess SDK Server uses the Integrated NT authentication mechanism and does not require an OpenAccess SDK Manager running on a Windows workstation to provide user ID and password information. OpenAccess SDK Clients on Linux/UNIX still must provide a valid Windows user ID and password because these clients will fall back on the OSLogon(UID,PWD) mechanism.