I'm in the process of trying to configure MDS such that it authenticates with our intranet web servers on behalf of the BlackBerry device. My goal is to prevent users from having to type in their Kerberos credentials when browsing to intranet sites. Following the administration guide, I understand that I am to set 'Support HTTP Authentication' to 'True' and am to configure the krb5.conf file according to our Kerberos implementation. So - several questions:
First off, has anyone configured MDS to do this? Does it work as expected in that users don't have to type their credentials to get to intranet sits?
What settings did you have to specify in your krb5.conf file?
Any ideas as to how this actually works? (I.e, does the BES store the credentials in a hashed file on it's hard drive or database?)