Authentication choice Authentication Internal CAS Kerberos OpenID Authentication parameters CAS server URL CAS URL should be a valid http(s) url and end with / Active Directory domain Active Directory must not be empty Active Directory server Active Directory server must not be empty Active Directory keytab file Missing keytab file ktpass command principal name useful to generate the keytab file on Active Directory server Third-party OpenId server URL Third-party OpenId server URL must not be empty OpenId client ID OpenId client ID must not be empty OpenId client secret OpenId client secret must not be empty