Disable delegated authentication for user account in MSD axapta

Disable delegated authentication for user accounts


Delegated authentication occurs when a network service accepts a request from a user and assumes that user’s identity in order to initiate a new connection to a second network service. By default, user accounts are not configured for delegated authentication, but you must verify that no user accounts that will use Kerberos authentication in Enterprise Portal are currently configured for delegated authentication.
1. In Active Directory Users and Computers, right-click a user account and select Properties.
2. On the Account tab, under Account Options, clear the Account is sensitive and cannot be delegated check box (if applicable), and click OK.
Enable delegated authentication for IIS application pool accounts.
Use this procedure to enable delegated authentication for the IIS application pool account.
1. In Active Directory Users and Computers, right-click the name of the IIS application pool account and select Properties.
2. Click the Delegation tab, select the Account is trusted for delegation check box, and then click OK.