Skip to content

Commit 05dfaff

Browse files
sivagudivadazsivagudivadaz
authored
minor corrections
1 parent 347d205 commit 05dfaff

File tree

1 file changed

+7
-7
lines changed

1 file changed

+7
-7
lines changed

articles/bastion/kerberos-authentication-portal.md

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -122,13 +122,13 @@ Once you have enabled Kerberos on your Bastion resource, you can verify that it'
122122
"type": "string",
123123
"defaultValue": "clientuser",
124124
"metadata": {
125-
"description": "Admin username on all VMs."
125+
"description": "username on ClientVM."
126126
}
127127
},
128128
"ClientVMPassword": {
129129
"type": "securestring",
130130
"metadata": {
131-
"description": "Admin password on all VMs."
131+
"description": "password on ClientVM."
132132
}
133133
},
134134
"ServerVmImage": {
@@ -417,14 +417,14 @@ This template does the following:
417417
- Bastion, Bastion-ip
418418
- ClientVM, ServerVM
419419
- Have the DNS Server of the VNET point to the private IP address of the Server-vm (domain controller). This is required for the target ClientVM to successfully domain-join to the Domain Controller (ServerVM).
420-
- Runs a Custom Script Extension on the ServerVM to promote it to a domain controller with domain name: `bastionkrb.test`
420+
- Runs a Custom Script Extension on the ServerVM to promote it to a domain controller with domain name: `bastionkrb.test`.
421421
- Runs a Custom Script Extension on the ClientVM to have it:
422-
- **Restrict NTLM: Incoming NTLM traffic** = Deny all domain accounts (this is to ensure Kerberos is used for authentication)
423-
- Domain-join the `bastionkrb.test` domain
422+
- **Restrict NTLM: Incoming NTLM traffic** = Deny all domain accounts (this is to ensure Kerberos is used for authentication).
423+
- Domain-join the `bastionkrb.test` domain.
424424

425425
Login to ClientVM using Bastion with Kerberos authentication:
426-
- Make sure to have the `Kerberos` feature enabled on the bastion
427-
- Login to ClientVM with Bastion using credentials: username = `[email protected]` and password = `<password-used-in-deployment.json>`
426+
- Make sure to have the `Kerberos` feature enabled on the bastion.
427+
- Login to ClientVM with Bastion using credentials: username = `[email protected]` and password = `<password-entered-during-deployment>`.
428428

429429

430430
## Next steps

0 commit comments

Comments
 (0)