Hello community,
We are trying to setup the AD authentication method in order to enable users to log into the DLP console with their AD accounts, we followed all the steps (Spring) in order to setup the config on the enforce server installed on a RedHat OS, but with no success. This is what has been done up to now: (I followed these steps mentionned on this article https://www.symantec.com/connect/forums/how-do-integrate-ad-console-dlp-15?1563449739592)
- Connection to the AD server has been established through the GUI ( System/settings/…)
- Copied the .xml template file to the correct location (SymantecDLP\Protect\tomcat\webapps\ProtectManager\WEB-INF\) renamed it and modified the content according to what's recommended.
- Modification done on the krb5.ini file so it points to the AD
- Restarting all the services
- Users are created inside DLP with the same username on the AD.
- Testing with kinit command works well.
After those modifications, the logon screen on the GUI changed and it shows the domain name, but when authenticating we are facing an authentication error, in the ltomcat logs it shows it as a normal authentication failure.
We think that we're missing some thing but we need your help to identify what is it.
Kind regards.