You can add Kerberos authentication for internal users, which requires inbound connection mode, to your deployment based on outbound-only connection mode connectors. The same connectors can be configured to use Kerberos authentication for users coming from the internal network and another authentication method for users coming from outside. This can be achieved by defining authentication policies based on network ranges.


To set up high availability for Kerberos authentication, a load balancer is required.