I have implemented kerberos Single Sign On authentication on one web application. In order to do that I generated a keytab file in the Active Directory for this specific app (ex: app1.domain.com).
If I want to implement SSO auth in another app in the same domain (ex: app2.domain.com) do I absolutely have to generate another keytab file?
Isn't it possible to have a single keytab file for every app in domain.com?