Skip to main content
Qlik Resources

Using Kerberos authentication on Windows

Whether Qlik Replicate Server is running on Linux or Windows, you can configure it to authenticate itself against the CDP Private Cloud cluster using Kerberos. However, when using Kerberos authentication on Windows, you need to perform the additional setup procedures outlined below.

Before beginning, make sure that the impersonated user (principal) is granted read and write permissions on the Replicate Data directory (<product_dir>\Data by default) on the Qlik Replicate server. For Active Directory KDC, the impersonated user is the user configured in the user interface.

To set up Kerberos authentication on Windows, perform the following steps to ensure that the impersonated user (principal) has the Log on as a batch job privilege on the Qlik Replicate server.

  1. On the Qlik Replicate Server machine, open the Local Security Settings (Control Panel > System Security > Administrative Tools > Local Security Policy).

    The Local Security Policy Settings with "Log on as a batch job" selected

  2. In the console tree, expand Local Policies and select User Rights Assignments.
  3. In the details pane, double-click Log on as a batch job.

  4. In the Log on as a batch job Properties dialog box, on the Local Security Settings tab, verify that the relevant user is listed. If the user is not listed, click Add User or Group, then add the user and click OK.

    The "Log on as a batch job" Properties window with "Administrators", "Backup Operators", and "Performance Log Users" available as Users and Groups.

    Your changes should take effect immediately.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!

Leave your feedback here