532N/A# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
532N/A# Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
532N/A# The contents of this file are subject to the terms
532N/A# of the Common Development and Distribution License
919N/A# (the License). You may not use this file except in
919N/A# compliance with the License.
919N/A# You can obtain a copy of the License at
919N/A# See the License for the specific language governing
919N/A# permission and limitations under the License.
919N/A# When distributing Covered Code, include this CDDL
919N/A# Header Notice in each file and include the License file
919N/A# If applicable, add the following below the CDDL Header,
919N/A# with the fields enclosed by brackets [] replaced by
919N/A# your own identifying information:
919N/A# "Portions Copyrighted [year] [name of copyright owner]"
532N/A# Portions Copyrighted 2011-2014 ForgeRock AS
970N/Aiplanet-am-auth-windowsdesktopsso-service-description=Windows Desktop SSO
1339N/Aa101.help.txt=This principal must match the name used in the keytab file created from the Active Directory server.<br/>\
970N/Aa102.help.txt=This is the absolute pathname of the AD keytab file. The keytab file is generated by the Active Directory server.
1351N/Aa103.help=The name of the Kerberos (Active Directory) realm used for authentication
532N/Aa104=Kerberos Server Name
1351N/Aa105=Return Principal with Domain Name
1351N/Aa105.help=Returns the fully qualified name of the authenticated user rather than just the username.
911N/Aa108=Search for the user in the realm
532N/Aa108.help=Validate that the user has a matched user profile configured in the data store.
532N/Aa108.help.txt=If this option is enabled, the module validates whether the account corresponds to a user profile in the \
532N/AData Store for the realm. The attributes to perform the search are configured under \
532N/A<i>Access Control > Realm Name > Authentication > All Core settings > Alias Search Attribute Name</i>.
532N/Aa106=Authentication Level
532N/Aa106.help.txt=Each authentication module has an authentication level that can be used to indicate the level of security \
970N/Aassociated with the module; 0 is the lowest (and the default).
970N/Aa107=Trusted Kerberos realms
1077N/Aa107.help.txt=If realms are configured, then Kerberos tickets are only accepted if the realm part of the UserPrincipalName \
1077N/Aof the Users Kerberos ticket matches a realm from the list.
1077N/Atoken=Invalid Kerberos token.
1196N/Aauth=Failed to authentication.
1196N/AserviceAuth=Service authentication failed.
1196N/Acontext=Failed to establish context.
1196N/Anullprincipal=Service principal name is null.
1196N/Anullkeytab=Service keytab file is null.
1196N/Anullrealm=KDC realm is null.
1351N/Anullkdc=KDC server name is null.
1351N/Anullauthlevel=Module auth level is null.
532N/Anokeytab=Keytab file {0} does not exist.
532N/Aauthlevel=Module auth level {0} is not correct.
idRepoSearch=IdRepo exception while trying to find the user {0} in the realm {1}
ssoSearch=SSO exception while trying to find the user {0} in the realm {1}
notfound=Unable to find the user {0} in the realm {1}
untrustedToken=Kerberos tokens from realm {0} are not trusted.