Manualshelf

Office 2008 for Mac

ManualsBrandsMicrosoft ManualsComputer AccessoriesMicrosoft Office:mac 2008 Home and Student Edition GZA-00006
71727374757677787980
Office 2008 Planning
66
When you set up your account in Entourage, you must click
Use Kerberos authentication, or for
all other types of authentication, click
Use my account information. When you choose the
Kerberos authentication method, the user, password, and domain text fields in the
Use my
account information section are disabled. The disabled fields serve as a visual clue that Kerberos
authentication is mutually exclusive with the other available authentication. When Kerberos
protocol is enabled, it is used to attempt authentication against all of the servers related to the
account, such as HTTP or LDAP. When Kerberos protocol is disabled in the account settings,
Kerberos authentication will not be attempted against any of the servers related to the account.
For new Exchange accounts, Kerberos protocol is disabled by default with
None selected in the
Kerberos ID pop-up menu. When you enable Kerberos protocol, Entourage allows the user to
choose or create a valid Kerberos ID. If the account is created using auto-detect, the
Kerberos ID
pop-up menu is populated with the existing ID. Kerberos protocol attempts auto-detect against
servers if there is at least one Kerberos ticket present in the Mac OS X credential cache or a
_kerberos._tcp.<domain> record is available from the Domain Name Server (DNS). If the auto-
detect process is successful, the ticket is populated on the account’s
Kerberos ID pop-up menu. If
the auto-detect process does not include a successful Kerberos authentication, the account’s
Kerberos setting will be disabled and
Kerberos ID pop-up menu is set to None.
To create a new Kerberos ID, provide the user name, password, and realm information. Realm is
another name for a "domain" In the
Authenticate to Kerberos dialog box, in the Name field, type
Account ID. This is sometimes the part of your e-mail address before the "@" symbol.
Note In the
Realm field, you must type the domain name in all uppercase letters, such as
ALPINESKIHOUSE.COM.
Kerberos authentication for administrators
Kerberos authentication might fail if the account’s primary mailbox server does not support
Kerberos protocol or if the KDC fails. To ensure that users are authenticated successfully by using
Kerberos protocol, you should make sure that the KDC is up and running for users to access the
different network services. In enterprise and mission-critical environments, it's important for
administrators to create at least one failover KDC.
When Kerberos authentication fails, Entourage provides the option of using the other supported
authentication mechanisms. The types of authentication methods that are available for Microsoft
Exchange e-mail accounts can vary depending on whether authentication is performed on a front-
end server or on a back-end server. For more information about the different authentication
methods, see Authentication and security in the WebDAV environment
in the Office 2008 Planning
section.