# Kerberos Authentication

SingleStore supports Kerberos third-party authentication using the Generic Security Services API (GSSAPI). When a Kerberos-authenticated user attempts to connect to SingleStore, their credentials are automatically validated and they are optionally granted access to SingleStore.

This document explains how to enable, configure, and troubleshoot this feature.

## In this section

* [Assumptions and Prerequisites](https://docs.singlestore.com/db/v9.1/security/authentication/kerberos-authentication/assumptions-and-prerequisites.md)
* [Configuring the KDC](https://docs.singlestore.com/db/v9.1/security/authentication/kerberos-authentication/configuring-the-kdc.md)
* [Configuring SingleStore for Kerberos Authentication](https://docs.singlestore.com/db/v9.1/security/authentication/kerberos-authentication/configuring-singlestore-for-kerberos-authentication.md)
* [Troubleshooting](https://docs.singlestore.com/db/v9.1/security/authentication/kerberos-authentication/troubleshooting.md)

***

Modified at: June 22, 2022

Source: [/db/v9.1/security/authentication/kerberos-authentication/](https://docs.singlestore.com/db/v9.1/security/authentication/kerberos-authentication/)

(An index of the documentation is available at /llms.txt)