Procedure 6.2. To enable Kerberos authentication on the Macintosh:

1. Log in as the admin user and launch the /Applications/Utilities/Terminal application.

2. Change to the /private/etc directory and make a backup of the existing authorization file.

   # cd /private/etc
   # cp -p authorization authorization_bak
   

3. Open the authorization file, and locate the string "system.login.console".

4. Locate the <dict> entry below this string, and then locate the <key>mechanisms</key> entry.

5. Change <string>authinternal</string> to <string>builtin:krb5authnoverify,privileged</string>

   Caution

   Several instances of authinternal may occur in this file. Ensure that you change the correct instance.

6. Save and close the file.

7. Restart the machine to enable Kerberos authentication.