Hello,
For starters, we’re looking to implement basic laptop-to-workstation (client-to-server) remote desktop connections. Our environment uses kerberos auth via SSSD and AD. (Further details at the bottom of the post).
The kerberos docs for NoMachine make it seem as though the workstation needs to act as a sort of kerberos server (requesting that we install krb5-admin-server and create a new realm (or administrative domain).
Can we use the existing realm / existing administrative domain with NoMachine + kerberos auth, or is that not possible? We don’t really want our workstations to be operating their own kerberos servers.
I’m not 100% well-versed in kerberos auth, so I may be missing something here. Thanks for your help, and let me know if you have any questions.
* connections will be linux-to-linux w/Ubuntu 18.04 and NoMachine enterprise 6.7.6. we’re using gnome on X (not wayland).