Intergration with Kerberos and Appian

RE: Intergration with Kerberos and Appian

ericg329 — Mon, 08 Jul 2019 16:09:18 GMT

People use to setup Kerberos authentication directly with Appian by customizing Appian's Spring Security files, which is why you can see discussion on the topic pop up when searching through Community posts. Support for customizing Appian's Spring Security files has since been deprecated in favor of the Admin Console configurations. Customizing the Spring Security files was never straight forward and often led to upgrade and maintenance issues.

The best approach for configuring SSO in Appian is to utilize the SAML configurations in the Admin Console. The end user experience via PC or mobile app will depend largely on what identity provider you have available to configure the SAML authentication with Appian.

https://docs.appian.com/suite/help/19.2/Authentication.html

https://docs.appian.com/suite/help/19.2/Appian_Administration_Console.html#saml-authentication

RE: Intergration with Kerberos and Appian

Rakesh Kumar — Sun, 07 Jul 2019 06:57:38 GMT

Hello Nathan,

Could you please explain how to acheive this?

Appian authentication layer means spring file configurations or Authentication via Admin console?

What does it mean by third-pary authentication system? Could you provide some example for better understanding?

By saying "we would recommend using LDAP integration", does it mean that it is better to have LDAP authenticaion instead of SAML/SSO?

RE: Intergration with Kerberos and Appian

Nathan Hunter — Thu, 04 Jul 2019 21:28:32 GMT

I'm afraid that web sign-in does not support Integrated Windows Authentication. For mobile, any third-party authentication systems must be integrated with Appian's authentication layer and cannot act as a broker in between the server and the client, so we would recommend using LDAP integration.