How can we help you today? How can we help you today?

Aurora PostgreSQL with Kerberos Authentication

We are experiencing issues with active directory (Kerberos) authentication with Flyway Desktop. We are able to authenticate with a local database user, no problem, however we are unable to authenticate with active directory.


Unable to obtain connection from database (jdbc:postgresql://clustname:5432/databasename?gssEncMode=require&gsslib=gssapi&ssl&sslmode=prefer&sslrootcert=C:\Users\username\Cert\oot.pem) for user 'UserName@domainname': An error occurred while setting up the GSS Encoded connection.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------

SQL State : 08P01 Error Code : 0 Message : An error occurred while setting up the GSS Encoded connection. Caused by: An error occurred while setting up the GSS Encoded connection.


We have tried a few different connection string configurations as recommended by support:
jdbc:postgresql://your_server:your_port/your_database?gssEncMode=require&gsslib=gssapi


JAAS configuration file is present and pointed in the environment variables:
-Djava.security.auth.login.config=/etc/jaas.conf


pgjdbc
{
  com.sun.security.auth.module.Krb5LoginModule required
  doNotPrompt=true
  useTicketCache=true
  debug=true
  client=true;
};


klist returns the correct Kerberos ticket. 



Has anyone else bumped into this issue? 



Kristi
0

Add comment

Please sign in to leave a comment.