We are trying to setup LDAP authentication using Kerberos/IAW on our
GSA. When you try to search "public and secure content", it prompts
for a second sign-on which says, "Connecting to
google.mycompany.com"
and prompts for your sign on. After entering valid LDAP credentials,
it returns to the sign on and appears to be authenticating to a GOOGLE
domain (GOOGLE\username). We have verified the keytab is correct,
based on the documentation provided by Google. I have two questions 1)
what are we missing? 2) shouldn't there be a single signon, if using a
valid domain account to log in to the PC?