Configuring an XDBC App Server for Kerberos Authentication
The mlcp tool communicates with MarkLogic through an XDBC App Server. Configure your XDBC App Server to use Kerberos for external security, as described in Reference: The App Server Configuration Page in Securing MarkLogic Server.
Configure your XDBC App Server to use “kerberos-ticket” authentication.
For example, if you create a configuration named “kerb-conf”, then configure your XDBC App Server in the Admin Interface with these configuration setting values:
Field |
Value |
|---|---|
Authentication |
|
Internal Security |
|
External Securities |
|
You can use an existing XDBC App Server or create a new one. To create a new XDBC App Server, use the Admin Interface, the Admin API, or the REST Management API. For details, see Creating a New XDBC Server in Administrating MarkLogic Server.
Configure the App Server to use “kerberos-ticket” authentication and the Kerberos external security configuration object you created following the instructions in Reference: The External Security Configuration Page in Securing MarkLogic Server.
Note
When you install MarkLogic, an XDBC App Server and other services are available port 8000. Changing the security configuration for the App Server on port 8000 affects all the MarkLogic services available through this port, including the HTTP App Server and REST Client API instance.