kerberos referrals

Report

Post on 31-Dec-2015

15 Views

Category:

Documents

0 Downloads

Preview:

Click to see full reader

DESCRIPTION

Kerberos referrals. Schedule. Refresh draft and publish before interim meeting Current date - December 20(tentative). Basic referral mechanism. Motivation Client config changes are not scalable MS deployments are heavily cross realm oriented Mechanism KDC issues referrals - PowerPoint PPT Presentation

TRANSCRIPT

Kerberos referrals

Schedule

• Refresh draft and publish before interim meeting

• Current date - December 20(tentative)

Basic referral mechanism

• Motivation– Client config changes are not scalable– MS deployments are heavily cross realm

oriented

• Mechanism– KDC issues referrals– Client chases referrals

AS referrals

• Client uses KRB-NT-ENTERPRISE in request

• Client sets ‘canonicalize’

• KDC returns– KRB-NT-PRINCIPAL if name found– KDC_ERR_WRONG_REALM if referral– KDC_ERR_C_PRINCIPAL_UNKNOWN

TGS referrals

• Client sends TGS-REQ with ‘canonicalize’

• KDC returns TGS-REP– with service ticket if service found– Cross realm TGT if the service in another

realm

Issues

• Referrals and canonicalization

• Client name canonicalization issues– Possible issues with name based access

control– Can only get canonicalization when

authenticating

top related

configuring kerberos constrained delegation · configuring...
Documents
introduction to kerberos kerberos and domain authentication
Documents
using kerberos for web authentication -...
Documents
@timmedin tim@redsiege.com kerberos & attacks 101 ·...
Documents
referrals, referrals, referrals 1. child care referrals 2
Documents
integrating kerberos into apache hadoop - mit kerberos...
Documents
mit kerberos
Documents
abusing microsoft kerberos: sorry you guys ... - gentil...
Documents
kerberos: an authentication sewice for computer...
Documents
kerberos authentication protocol
Education
kerberos: an authentication service for computer...
Documents
kerberos 5584a556605cd
Documents
authentication in real world: kerberos, ssh and...
Documents
kerberos authentication
Documents
setup kerberos
Documents
spring security kerberos - reference documentation...spring...
Documents
troubleshooting kerberos errors - …...troubleshooting...
Documents
kerberos protocol
Technology
kerberos tpb
Business
kerberos - wpi
Documents