Machine 1 - SQL2005, K2 service, IIS6
Machine 2 - 2nd K2 service
In the above scenerio, does machine 2 require Kerberos if it doesn't have IIS6?
Machine 1 - SQL2005, K2 service, IIS6
Machine 2 - 2nd K2 service, IIS6
our hardware load balancer will round robin the request to each machine.
In the above scenerio, does machine 2 require Kerberos if it does have IIS6?
No SPS in both cases.
Page 1 / 1
Hi Peter,
In scenario 1 yes you would need Kerberos because IIS would need to be able to delegate credentials to the second K2 server
In scenario 2 you could potentially get by without Kerberos if you specified that IIS on server 1 only points to the K2 service on server 1 and that IIS on server 2 only points to the K2 service on server 2.
With that said though it is recommended to setup Kerberos for any distributed environment because Kerberos is a far more secure, robust, and scaleable protocol than NTLM. I think that the initial headache setting up Kerberos will be far smaller than the continued headache of trying to workaround it.
I hope this answers your questions.
-Eric
In scenario 1 yes you would need Kerberos because IIS would need to be able to delegate credentials to the second K2 server
In scenario 2 you could potentially get by without Kerberos if you specified that IIS on server 1 only points to the K2 service on server 1 and that IIS on server 2 only points to the K2 service on server 2.
With that said though it is recommended to setup Kerberos for any distributed environment because Kerberos is a far more secure, robust, and scaleable protocol than NTLM. I think that the initial headache setting up Kerberos will be far smaller than the continued headache of trying to workaround it.
I hope this answers your questions.
-Eric
Reply
View our Community Site Map
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.