Search Appliance SBE
Select which authentication schemes to allow for password-protected
URLs. The settable schemes are Basic
, NTLMv1
, NTLMv2
,
Negotiate
,
CAS
(Central Authentication Service), SAML/ADFS
(Security Assertion Markup Language / Active Directory Federation
Services), or File
(for file://
URLs). NTLMv2 requires
Texis version 5.01.1213917000 20080619 or later. Note that the
scheme(s) actually accepted for a given URL are determined by
the server; if none of the server-offered schemes are enabled by this
setting, then the protected URL cannot be walked. This setting can be
used to disable less-secure or undesired schemes, such as Basic or
NTLMv1 authentication. FTP authentication is always allowed. Note
that Negotiate
authentication is only offered and supported
when the Search Appliance is running on Linux 2.6 or later. Note also that
SAML/ADFS support is limited and may not work in some environments;
contact tech support in this case.