IBM WAS - Accepting Kerberos tokens from two different AD KDCs
Posted on 2010-08-30
How does one configure an IBM WAS cell (RHLinux) to accept Kerberos tokens from two different KDCs. The KDCs are both Win2008R2 ADs, and they have a transitive forest trust between them. Is it possible to put SPNs into both ADs so we can accept tickets from either? If so, do we just "merge" the keytabs from the two ADs into one?